home

adobe flash player_2015.exe

The executable adobe flash player_2015.exe has been detected as malware by 1 anti-virus scanner. This is a setup program which is used to install the application. The file has been seen being downloaded from storage.googleapis.com.
Version:
101.1.1.4

MD5:
fb59095201c6ad474fe46443d0020a2a

SHA-1:
a609c36189d934354c6f6ef43368e34a28a20833

SHA-256:
d6dc8ee896224a81e53725d009eaa5e34b5296bc616b0b12dc7c6981dfb26909

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
4/27/2024 2:50:05 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Threat.Win.Reputation.IMP
16.1.6.3

File size:
1.2 MB (1,248,256 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Language:
Russian (Russia)

Common path:
C:\users\{user}\downloads\adobe flash player_2015.exe

File PE Metadata
Compilation timestamp:
6/19/1992 7:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:zQAzAL4kW5AZNXOqpfCNecuMe/vIS0v0es6nZ6Cac1e4sTU+JkY:zCNX9p8eNMe3Iin7TPJZ

Entry address:
0xF5EE4

Entry point:
55, 8B, EC, 83, C4, F0, B8, 94, 59, 18, 00, E8, 30, 0B, F1, FF, 68, 7C, 5F, 18, 00, 6A, 00, 6A, 00, E8, 02, 0E, F1, FF, E8, 7D, 0F, F1, FF, 3D, B7, 00, 00, 00, 75, 0C, A1, FC, F3, 18, 00, 8B, 00, E8, C2, 68, F7, FF, A1, FC, F3, 18, 00, 8B, 00, E8, 32, 67, F7, FF, 6A, EC, A1, FC, F3, 18, 00, 8B, 00, 8B, 40, 30, 50, E8, 34, 17, F1, FF, 0D, 80, 00, 00, 00, 50, 6A, EC, A1, FC, F3, 18, 00, 8B, 00, 8B, 40, 30, 50, E8, 3C, 19, F1, FF, 8B, 0D, 00, F4, 18, 00, A1, FC, F3, 18, 00, 8B, 00, 8B, 15, 7C, 3C, 18, 00, E8...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
980 KB (1,003,520 bytes)

The file adobe flash player_2015.exe has been seen being distributed by the following URL.

https://storage.googleapis.com/.../Adobe Flash Player_2015.exe

Remove adobe flash player_2015.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.