home

8l08.exe

XFlash

This is a setup program which is used to install the application. The file has been seen being downloaded from www.firmwarehq.com.
Product:
XFlash

Version:
2.2.85.0

MD5:
e6a2ff40c2a59fffed6da88466898f5d

SHA-1:
55ae04357894ff4533a548440e05a5fac97113af

SHA-256:
7982f59767a83ab23bf0d795110f7627659d98340e5733f686c319b9b36c003a

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/16/2024 7:55:31 AM UTC  (today)

Scan engine
Detection
Engine version

Quick Heal
(Suspicious) - DNAScan
7.15.14.00

Zillya! Antivirus
Backdoor.IRCNite.Win32.694
2.0.0.2303

File size:
885 KB (906,240 bytes)

Product version:
2.2.85.0

File type:
Executable application (Win32 EXE)

Language:
Chinese (Traditional, Taiwan)

File PE Metadata
Compilation timestamp:
8/27/2009 9:53:52 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
5.0

CTPH (ssdeep):
24576:E3j+I2lrWaqmQqNyO9b7mit5TlbQcL5nrkiB82FjY:E3CZTaqNyONFl5nrkiBr5

Entry address:
0x558F40

Entry point:
60, BE, 00, E0, 87, 00, 8D, BE, 00, 30, B8, FF, C7, 87, 78, 54, 51, 00, 03, D0, BE, A1, 57, 83, CD, FF, EB, 0E, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 19, 8B, 1E, 83, EE, FC, 11, DB, 72, 10, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 78, D1, F8, 89, C5, EB, 0B, 01, DB, 75, 07...
 
[+]

Entropy:
7.9100

Packer / compiler:
UPX v0.89.6 - v1.02 / v1.05 -v1.22 (Delphi) stub

Code size:
880 KB (901,120 bytes)

The file 8l08.exe has been seen being distributed by the following URL.

http://www.firmwarehq.com/getdownload_1417-code_cvl7ThcR_ba41f5a58868193d7f179b5990215ae2-file_8L08.EXE.html

Scan 8l08.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.