» adobe flash player 2015.exe
Overview
Analysis
File Details
Downloads (1)

adobe flash player 2015.exe

The executable adobe flash player 2015.exe has been detected as malware by 12 anti-virus scanners. This is a setup program which is used to install the application. According to AVG, this software downloads additional adware offers during setup. The file has been seen being downloaded from storage.googleapis.com.

File name:

Version:

1.0.0.0

MD5:

c0c99997ed38073fbf80330c7d41b97f

SHA-1:

93935cc68de1bd1aca913b71ed5ce84eaebaa3bd

SHA-256:

5075e19a70014d84e72b64069616da443689e41951f04184af8453a3753bc4cc

Scanner detections:

12 / 68

Status:

Malware

Analysis date:

4/18/2024 5:31:09 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.GenericKD.2720577

509

Avira AntiVirus

TR/Dldr.Agent.204288.10

8.3.2.2

Arcabit

Trojan.Generic.D298341

1.0.0.526

AVG

Downloader.MSIL

2016.0.2987

Baidu Antivirus

Trojan.MSIL.Banload

4.0.3.15914

Bitdefender

Trojan.GenericKD.2720577

1.0.20.1285

Emsisoft Anti-Malware

Trojan.GenericKD.2720577

8.15.09.14.05

ESET NOD32

MSIL/TrojanDownloader.Banload.ER (variant)

9.12245

Fortinet FortiGate

MSIL/Banload.ER!tr.dldr

9/14/2015

G Data

Trojan.GenericKD.2720577

15.9.25

IKARUS anti.virus

Trojan-Downloader.MSIL.Banload

t3scan.1.9.5.0

MicroWorld eScan

Trojan.GenericKD.2720577

16.0.0.771

File size:

199.5 KB (204,288 bytes)

Product version:

1.0.0.0

Original file name:

Visix.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\adobe flash player 2015.exe

File PE Metadata

Compilation timestamp:

9/11/2015 2:41:52 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

3072:DzJ+lM+sEvWfROJLhfJpreQ00ws/R3b/rz3qhFTmtHUf9i+:gWROJNhpeBUDnqkI9

Entry address:

0x32AAE

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

195 KB (199,680 bytes)

The file adobe flash player 2015.exe has been seen being distributed by the following URL.

https://storage.googleapis.com/.../Adobe Flash Player 2015.exe

Remove adobe flash player 2015.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.