» adobe flash player 2015.exe
Overview
Analysis
File Details
Downloads (3)

adobe flash player 2015.exe

Product

The executable adobe flash player 2015.exe has been detected as malware by 29 anti-virus scanners. This is a setup program which is used to install the application. According to AVG, this software downloads additional adware offers during setup. The file has been seen being downloaded from storage.googleapis.com and multiple other hosts.

File name:

Product:

Product

Version:

1.0.0.0

MD5:

10e0aa8316df06893b761cf3d6605117

SHA-1:

19b1e1772e8144cfd131917d46cb0ed48aac9d77

SHA-256:

524fc355170f24dc2dad553ac3cd38ff65c78c1fca08ac6f8a1d844295769b5b

Scanner detections:

29 / 68

Status:

Malware

Analysis date:

4/16/2024 11:43:14 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.Agent.BNME

445

Agnitum Outpost

Trojan.DL.Banload

7.1.1

AhnLab V3 Security

Downloader/Win32.Banload

2015.11.06

Arcabit

Trojan.Agent.BNME

1.0.0.590

avast!

MSIL:Banker-ES [Trj]

2014.9-151117

AVG

Downloader.MSIL

2016.0.2923

Baidu Antivirus

Trojan.MSIL.Banload

4.0.3.151015

Bitdefender

Trojan.Agent.BNME

1.0.20.1605

Emsisoft Anti-Malware

Trojan.Agent.BNME

8.15.11.17.11

ESET NOD32

MSIL/TrojanDownloader.Banload.EX (variant)

9.12407

Fortinet FortiGate

MSIL/Banload.EV!tr.dldr

11/17/2015

F-Secure

Trojan.Agent.BNME

11.2015-17-11_3

G Data

Trojan.Agent.BNME

15.11.25

IKARUS anti.virus

Trojan-Downloader.MSIL.Banload

t3scan.1.9.5.0

K7 AntiVirus

Trojan-Downloader

13.212.17770

Kaspersky

Trojan-Downloader.MSIL.Banload

14.0.0.1108

Malwarebytes

Trojan.Banker.MSIL

v2015.11.17.11

McAfee

RDN/Generic Downloader.x

5600.6579

Microsoft Security Essentials

TrojanDownloader:MSIL/Banload

1.1.12205.0

MicroWorld eScan

Trojan.Agent.BNME

16.0.0.963

NANO AntiVirus

Trojan.Win32.Banload.dybvge

0.30.26.4437

nProtect

Trojan.Agent.BNME

15.11.06.01

Panda Antivirus

Trj/CI.A

15.11.17.11

Qihoo 360 Security

HEUR/QVM03.0.Malware.Gen

1.0.0.1077

Rising Antivirus

PE:Malware.Generic/QRS!1.9E2D [F]

23.00.65.151115

Sophos

Mal/Generic-S

4.98

Trend Micro

TROJ_GEN.R02KC0DJM15

10.465.17

VIPRE Antivirus

Trojan.Win32.Generic

45044

Zillya! Antivirus

Downloader.Banload.Win32.67999

2.0.0.2496

File size:

181 KB (185,344 bytes)

Product version:

1.0.0.0

Original file name:

Product.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\adobe flash player 2015.exe

File PE Metadata

Compilation timestamp:

10/14/2015 8:05:50 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

3072:lzJ+lM+sEvWfROJLhfJpreQ00ws/R3b/rz3qhUsE8FP9myaO9O:CWROJNhpeBUDnqVp9x

Entry address:

0x2DE5E

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

176 KB (180,224 bytes)

The file adobe flash player 2015.exe has been seen being distributed by the following 3 URLs.

http://storage.googleapis.com/.../Adobe Flash Player 2015.exe

https://storage.googleapis.com/.../Adobe Flash Player 2015.exe

Remove adobe flash player 2015.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.