zona.setup.exe

Chetvertoe pokolenie, OOO

The application zona.setup.exe by Chetvertoe pokolenie, OOO has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software.
Publisher:
Chetvertoe pokolenie, OOO  (signed and verified)

MD5:
99dce86066a09772f81a5041a087c518

SHA-1:
e086b319e17fcdf379eea44bc1d96c9f810eaa46

SHA-256:
d57b77e9bc6cda31ad9f073ed546f206699d08c1ae9a7159e082f7ee8d8ddc09

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
1/12/2025 11:42:40 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Zona (M)
16.8.25.11

File size:
38 MB (39,895,224 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\zona 1.0.7.1\zona.setup.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
8/28/2015 4:00:00 AM

Valid to:
8/28/2016 3:59:59 AM

Subject:
CN="Chetvertoe pokolenie, OOO", OU=IT, O="Chetvertoe pokolenie, OOO", STREET=d.41-A prospekt Lenina, L=Chelyabinsk, S=Chelyabinsk, PostalCode=454091, C=RU

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
147448E7A60124EF7677AAD6BDC1E889

File PE Metadata
Compilation timestamp:
3/8/2016 10:05:54 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
393216:QEsK7qwjdYj21yFnXaMP4xo2W7hB2oLAunIN25G+5hR6ohpvSMy66z:QEsEqwjaj3nX7PMWdB7AcG2/77hEMy6O

Entry address:
0x4F980

Code size:
443 KB (453,632 bytes)

Remove zona.setup.exe - Powered by Reason Core Security