» flashgot.exe
Overview
Analysis
File Details

flashgot.exe

InformAction

The executable flashgot.exe has been detected as malware by 10 anti-virus scanners. It is installed within the Mozilla Firefox web browser as part of an addin/plugin.

File name:

flashgot.exe

Publisher:

InformAction (signed and verified)

MD5:

c891dd8cf527d19c04dc2025bdf33b51

SHA-1:

276e0dfa1de9fb687fd86f2a133b8ba5347b5213

Scanner detections:

10 / 68

Status:

Malware

Analysis date:

4/24/2024 1:20:43 PM UTC (today)

Scan engine

Detection

Engine version

avast!

Win32:Patched-HO

2014.9-160401

AVG

Win32/Slugin.A

2017.0.2786

Bitdefender

Win32.SlugIn.A.Dam

1.0.20.460

Clam AntiVirus

Trojan.Spy-59563

0.98/17211

F-Prot

W32/Slugin.A.gen

v6.4.6.1.107

F-Secure

Win32.SlugIn.A.Dam

11.2016-01-04_6

G Data

Win32.SlugIn.A.Dam

16.4.21

IKARUS anti.virus

Virus.Win32.Slugin

t3scan.1.1.88.0

Microsoft Security Essentials

Virus:Win32/Slugin.A!dll

1.163.1557.0

nProtect

Win32.SlugIn.A.Dam

10.08.18.01

File size:

276.2 KB (282,843 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\Documents and Settings\{user}\Application data\mozilla\firefox\profiles\41a66e7e5ee1\flashgot.exe

Digital Signature

Signed by:

InformAction

Authority:

The USERTRUST Network

Valid from:

7/23/2009 7:00:00 AM

Valid to:

7/24/2010 6:59:59 AM

Subject:

CN=InformAction, O=InformAction, STREET=via Emilia 33, L=Palermo, S=Palermo, PostalCode=90144, C=IT

Issuer:

CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:

00D0316BBF54B9D310EAE464F1E076016F

File PE Metadata

Compilation timestamp:

4/14/2010 8:07:11 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

CTPH (ssdeep):

3072:4QO+aKQBZF/2oEhf9sno282gzVAvYmNKtqhYMhYZ4z1sxtbjIUWnoRzb:y+aKAF3QFsnoJ2gZAvnT6XZ4zytbLH

Entry address:

0xE884

Entry point:

E8, 73, 6B, 00, 00, E9, 16, FE, FF, FF, 6A, 0C, 68, 70, 5F, 42, 00, E8, B6, 1F, 00, 00, 8B, 75, 08, 85, F6, 74, 75, 83, 3D, B8, 53, 43, 00, 03, 75, 43, 6A, 04, E8, B6, 24, 00, 00, 59, 83, 65, FC, 00, 56, E8, 1C, 6C, 00, 00, 59, 89, 45, E4, 85, C0, 74, 09, 56, 50, E8, 38, 6C, 00, 00, 59, 59, C7, 45, FC, FE, FF, FF, FF, E8, 0B, 00, 00, 00, 83, 7D, E4, 00, 75, 37, FF, 75, 08, EB, 0A, 6A, 04, E8, A4, 23, 00, 00, 59, C3, 56, 6A, 00, FF, 35, 24, 53, 43, 00, FF, 15, 38, 10, 42, 00, 85, C0, 75, 16, E8, 05, 1F, 00... 
[+]

Entropy:

6.3510

Code size:

128 KB (131,072 bytes)

Remove flashgot.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.