» FLVGuncelle.exe
Overview
Analysis
File Details
Downloads (1)

FLVGuncelle.exe

AOE

The executable FLVGuncelle.exe has been detected as malware by 33 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from www.fileshareservices.net.

File name:

FLVGuncelle.exe

Publisher:

AOE

Product:

AOE

Version:

409

MD5:

c9744fe809972549d87b960a20c0c208

SHA-1:

0678640b8d34d5bd7164056e50ddbdb768b27c69

SHA-256:

42aff123de91c0ae75ab544aa0a87e047277ca725e3e42e97cfa36e71ba80fd9

Scanner detections:

33 / 68

Status:

Malware

Analysis date:

4/18/2024 10:19:19 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Zusy.79036

691

Agnitum Outpost

Trojan.Blocker

7.1.1

AhnLab V3 Security

Trojan/Win32.Blocker

2015.03.04

Avira AntiVirus

TR/Zusy.79036.22

7.11.213.100

avast!

Win32:Ransom-ARZ [Trj]

2014.9-150316

AVG

Pakes_c

2016.0.3169

Baidu Antivirus

Trojan.Win32.Ransomlock

4.0.3.15316

Bitdefender

Gen:Variant.Zusy.79036

1.0.20.375

Comodo Security

UnclassifiedMalware

21286

Dr.Web

Trojan.Zipvideom.1

9.0.1.075

Emsisoft Anti-Malware

Gen:Variant.Zusy.79036

8.15.03.16.09

ESET NOD32

MSIL/Bepush (variant)

9.11265

Fortinet FortiGate

MSIL/Bepush.G!tr

3/16/2015

F-Secure

Trojan-Downloader:W32/Kilim.T

11.2015-16-03_2

G Data

Gen:Variant.Zusy.79036

15.3.25

IKARUS anti.virus

Trojan-Ransom.Win32.Blocker

t3scan.1.8.6.0

K7 AntiVirus

Riskware

13.200.15150

Kaspersky

Trojan-Ransom.Win32.Blocker

14.0.0.2338

Malwarebytes

Trojan.Downloader.MSIL

v2015.03.16.09

McAfee

Trojan-FDNQ!C9744FE80997

5600.6825

Microsoft Security Essentials

TrojanDropper:MSIL/Bepush.A

1.1.11400.0

MicroWorld eScan

Gen:Variant.Zusy.79036

16.0.0.225

NANO AntiVirus

Trojan.Win32.Zipvideom.culcjm

0.30.0.296

Norman

Suspicious_Gen5.ALOMR

11.20150316

Panda Antivirus

Generic Malware

15.03.16.09

Qihoo 360 Security

Win32/Trojan.98e

1.0.0.1015

Sophos

Troj/Ransom-AGG

4.98

SUPERAntiSpyware

Trojan.Agent/Gen-MSIL

9994

Trend Micro House Call

TROJ_SPNR.0CBH14

7.2.75

Trend Micro

TROJ_SPNR.0CBH14

10.465.16

Vba32 AntiVirus

Hoax.Blocker

3.12.26.3

VIPRE Antivirus

Trojan.Win32.Generic

38104

ViRobot

Trojan.Win32.A.Blocker.162304.D[h]

2014.3.20.0

File size:

158.5 KB (162,304 bytes)

Product version:

409

Trademarks:

AOE

Original file name:

FLVGuncelle.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\programs\flvguncelle.exe

File PE Metadata

Compilation timestamp:

2/5/2014 3:16:18 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

3072:LE4MP0ZscHEKRBGaFHthLmUDfpXcXZ4HBOCa8W99pCGdlIBp3LfUO3nz6h0:L06kYBGwNha2pcuHBVW99pPcp3LfDz

Entry address:

0x27A9E

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

7.6571

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

151 KB (154,624 bytes)

The file FLVGuncelle.exe has been seen being distributed by the following URL.

http://www.fileshareservices.net/dl.php

Remove FLVGuncelle.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.