home

install_flashplayer19.21.1.13_v2.exe

Flash Player

Macromedia

The executable install_flashplayer19.21.1.13_v2.exe has been detected as malware by 3 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from www.sugarsync.com.
Publisher:
Macromedia

Product:
Flash Player

Version:
16.15.131.2

MD5:
87d3f941d7fb19a04e3c340c58f90954

SHA-1:
d1f69438b5560224d82dfed83e7261b8c532ff4d

SHA-256:
03ac6920e299cefca3217d75fd2032f37c2a1e7dd4120f1125f5075676a4f310

Scanner detections:
3 / 68

Status:
Malware

Analysis date:
5/7/2024 9:17:50 PM UTC  (today)

Scan engine
Detection
Engine version

Emsisoft Anti-Malware
Gen:Variant.Symmi.58852
11.5.0.6191

F-Secure
Variant.Symmi.58852
5.15.96

Norman
Gen:Variant.Symmi.58852
10.04.2016 15:29:17

File size:
372 KB (380,928 bytes)

Product version:
16.15.131.2

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\install_flashplayer19.21.1.13_v2.exe

File PE Metadata
Compilation timestamp:
5/7/2016 7:03:24 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
6144:gC9a2+du2M7Fqajtn9Mb8zQuUlL0MgZWSmoRHtrL30131/f9BiRo1os:gua2iMcaxSwe3gZWpONrL81n9

Entry address:
0x1000

Entry point:
B8, 60, 90, 51, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, 6D, E5, 97, 47, 28, 22, E2, 6C, DB, BF, CC, 07, 19, FB, 50, 06, 2D, E9, 1A, E3, 8D, 05, B8, 0D, F8, 0D, BE, 0A, 97, E8, FD, 14, C9, 19, DD, 40, 35, 80, B2, C1, 8B, 7B, F1, BE, 23, 47, BD, E2, D0, A2, 35, AB, 85, D4, FA, 19, 9E, 41, FC, 3B, 6B, ED, 74, 76, 8F, CB, 77, 6C, 55, 5E, EF, 7C, 3C, D1, E5, D0, E8, C7, 3D, C3, 34, 08, 03, 08, 4E, FA, 39, 7E, 3B, 89, 85, 0B, D4...
 
[+]

Packer / compiler:
PECompact v2

Code size:
728.5 KB (745,984 bytes)

The file install_flashplayer19.21.1.13_v2.exe has been seen being distributed by the following URL.

https://www.sugarsync.com/.../D3123795_07777063_736216?directDownload=true

Remove install_flashplayer19.21.1.13_v2.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.