» FLVGuncelle.exe
Overview
Analysis
File Details
Downloads (1)

FLVGuncelle.exe

AOE

The executable FLVGuncelle.exe has been detected as malware by 14 anti-virus scanners. The file has been seen being downloaded from www.showmaskonnn.com.

File name:

FLVGuncelle.exe

Publisher:

AOE

Product:

AOE

Version:

MD5:

1a9cba5f6af6f68ce9312e03a261ea5c

SHA-1:

01a4fd4c208483753b8f75c4433477969c3781d1

SHA-256:

c85ae9cc7cbbd7a9c183987b707e9c2a81d3556e839d9802d05289a38f87bf85

Scanner detections:

14 / 68

Status:

Malware

Analysis date:

4/25/2024 12:10:15 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Kazy.320907

1119

Avira AntiVirus

TR/Kazy.320907

7.11.124.194

avast!

Win32:Ransom-ARZ [Trj]

2014.9-140111

Bitdefender

Gen:Variant.Kazy.320907

1.0.20.55

Dr.Web

Trojan.DownLoader9.9540

9.0.1.011

Emsisoft Anti-Malware

Gen:Variant.Kazy.320907

8.14.01.11.03

Fortinet FortiGate

W32/Blocker.DJFT!tr

1/11/2014

G Data

Gen:Variant.Kazy.320907

14.1.22

IKARUS anti.virus

Win32.SuspectCrc

t3scan.2.2.29

Kaspersky

Trojan-Ransom.Win32.Blocker

14.0.0.4482

McAfee

Artemis!1A9CBA5F6AF6

5600.7253

MicroWorld eScan

Gen:Variant.Kazy.320907

15.0.0.33

Trend Micro House Call

TROJ_GEN.F47V0110

7.2.11

VIPRE Antivirus

Trojan.Win32.Generic

25318

File size:

121 KB (123,904 bytes)

Product version:

AOE

Trademarks:

AOE

Original file name:

FLVGuncelle.exe

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\flvguncelle.exe

File PE Metadata

Compilation timestamp:

1/10/2014 3:46:55 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

3072:wEPMfvpp+ZLcMfndIgI/icuP8TTpeg5BG95LhnosiusXdhS:wvfRpPcndIvicxpeRfdonLX

Entry address:

0x1E42E

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

7.4817

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

113.5 KB (116,224 bytes)

The file FLVGuncelle.exe has been seen being distributed by the following URL.

http://www.showmaskonnn.com/dl.php

Remove FLVGuncelle.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.