» adobe flash player.exe
Overview
Analysis
File Details
Downloads (1)

adobe flash player.exe

Skype

Skype Technologies S.A.

The executable adobe flash player.exe has been detected as malware by 28 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from storage.googleapis.com.

File name:

Publisher:

Skype Technologies S.A.

Product:

Skype

Description:

Skype

Version:

7.1.59.105

MD5:

beae33919a514e60bb8f59cf84e4aec8

SHA-1:

ece7c4f7d40169eb12fabae2d9a21b48b03c9722

SHA-256:

647873b439f605d2054a0c18ab81aab5769ba361cd08ed1c02d4f5229810ef95

Scanner detections:

28 / 68

Status:

Malware

Analysis date:

4/25/2024 7:24:09 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.GenericKD.2361629

617

Agnitum Outpost

Trojan.DR.Sysn

7.1.1

Avira AntiVirus

TR/Agent.586752.42

8.3.1.6

avast!

Win32:Dropper-gen [Drp]

2014.9-150529

Baidu Antivirus

Trojan.Win32.Dropper

4.0.3.15529

Bitdefender

Trojan.GenericKD.2361629

1.0.20.745

Comodo Security

TrojWare.Win32.TrojanDownloader.Delf.gen

22147

Emsisoft Anti-Malware

Trojan.GenericKD.2361629

8.15.05.29.12

ESET NOD32

Win32/TrojanDownloader.Banload.VRG (variant)

9.11639

Fortinet FortiGate

W32/Sysn.AVIS!tr

5/29/2015

F-Prot

W32/Banload.Y.gen

v6.4.7.1.166

F-Secure

Trojan.GenericKD.2361629

11.2015-29-05_6

G Data

Trojan.GenericKD.2361629

15.5.25

IKARUS anti.virus

Trojan-Dropper.Agent

t3scan.1.8.9.0

K7 AntiVirus

Riskware

13.204.15935

Kaspersky

Trojan-Dropper.Win32.Sysn

14.0.0.1970

McAfee

RDN/Generic Dropper!ww

5600.6751

Microsoft Security Essentials

Trojan:Win32/Skeeyah!bit

1.1.11602.0

MicroWorld eScan

Trojan.GenericKD.2361629

16.0.0.447

NANO AntiVirus

Trojan.Win32.Sysn.drksmo

0.30.24.1357

nProtect

Trojan.GenericKD.2361629

15.05.15.01

Panda Antivirus

Trj/CI.A

15.05.29.12

Qihoo 360 Security

HEUR/QVM05.1.Malware.Gen

1.0.0.1015

Sophos

Mal/Behav-130

4.98

SUPERAntiSpyware

Trojan.Agent/Gen-Banload

9847

Trend Micro House Call

Suspicious_GEN.F47V0503

7.2.149

Vba32 AntiVirus

suspected of Trojan.Downloader.gen.h

3.12.26.4

VIPRE Antivirus

Trojan.Win32.Generic

40308

File size:

573 KB (586,752 bytes)

Product version:

7.1

Original file name:

SkypeSetup.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\adobe flash player.exe

File PE Metadata

Compilation timestamp:

6/19/1992 7:22:17 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

12288:8YxRvdDNUET8PlNWtUakdZ9k4CwoJ+lW+:1n9NHIlN8oM4/oJ+l

Entry address:

0x6B81C

Entry point:

55, 8B, EC, 83, C4, F0, B8, CC, B4, 46, 00, E8, A4, A5, F9, FF, A1, 14, DE, 46, 00, 8B, 00, E8, 60, 18, FE, FF, A1, 14, DE, 46, 00, 8B, 00, C6, 40, 5B, 00, 8B, 0D, 94, DF, 46, 00, A1, 14, DE, 46, 00, 8B, 00, 8B, 15, 88, AA, 46, 00, E8, 55, 18, FE, FF, A1, 14, DE, 46, 00, 8B, 00, E8, C9, 18, FE, FF, E8, 04, 85, F9, FF, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C++

Code size:

426.5 KB (436,736 bytes)

The file adobe flash player.exe has been seen being distributed by the following URL.

http://storage.googleapis.com/.../Adobe Flash Player.exe

Remove adobe flash player.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.