Pondus' interpretations of VT results have been found to be very accurate (i.m.h.o.).
As you can see the file has not been signed. That makes it at least more FP-prone.
Then it comes in the following categories,
that makes it could be much easier to be(come) malware-infested.
Buckets:
PastesPRO
Darknet: TorPRO
Darknet: I2PPRO
WhoisPRO
UsenetPRO
Private LeaksSECRET
Leaks COMBSECRET (info credits go to X Intelligence X special search engine)
But is no longer detected here: https://www.virustotal.com/gui/url/32303b34286480e53f6721ac782728999f90861534f75df93703a2ff5aee096e?nocache=1 (I am asking Pondus why some detections are not constantly being distributed to VT?)
polonus
This is a scan of the URL (download link) and not the file.
My VT scan show the file scan, i downloaded the file and uploaded it to VT
