home

winflash32.exe

Phoenix Technologies Ltd.

Publisher:
Phoenix Technologies Ltd.  (signed and verified)

MD5:
ff37f1fea3a5c2c7ce78c0b62417e448

SHA-1:
5677ec386e3dc230fe74c10b018b4033a62c9206

SHA-256:
8191a476c390d410f74d550c11d43a7d97b5d9d5a5d85130c35dc643e502aaaf

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/7/2024 8:40:53 PM UTC  (today)

File size:
242.3 KB (248,160 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\compressed\np300_p07rac_miсrocode new\modified\winflash32.exe

Digital Signature
Signed by:
Phoenix Technologies Ltd.

Authority:
VeriSign, Inc.

Valid from:
12/9/2010 5:30:00 AM

Valid to:
1/7/2012 5:29:59 AM

Subject:
CN=Phoenix Technologies Ltd., OU=CSS Core Features Development, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Phoenix Technologies Ltd., L=Milpitas, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6E4D187717FB6DAF7655D91CE7B6A028

File PE Metadata
Compilation timestamp:
12/8/2011 2:24:43 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
2.21

CTPH (ssdeep):
6144:PipDRFOpmJpJUbQnX4jsj2BcALA/V8kA/V8djyjWjyAYI5YiCZYPjl4ygjOZFQHD:SupmXoQnX4jsj2BcALA/V8kA/V8djyjZ

Entry address:
0x1160

Entry point:
55, 89, E5, 83, EC, 18, C7, 04, 24, 01, 00, 00, 00, FF, 15, 30, B4, 44, 00, E8, A8, FE, FF, FF, 90, 8D, B4, 26, 00, 00, 00, 00, 55, 89, E5, 53, 83, EC, 14, 8B, 45, 08, 8B, 00, 8B, 00, 3D, 91, 00, 00, C0, 77, 3B, 3D, 8D, 00, 00, C0, 72, 4B, BB, 01, 00, 00, 00, C7, 44, 24, 04, 00, 00, 00, 00, C7, 04, 24, 08, 00, 00, 00, E8, B3, 0D, 03, 00, 83, F8, 01, 0F, 84, FF, 00, 00, 00, 85, C0, 0F, 85, AA, 00, 00, 00, 31, C0, 83, C4, 14, 5B, 5D, C2, 04, 00, 3D, 94, 00, 00, C0, 74, 59, 3D, 96, 00, 00, C0, 74, 1B, 3D, 93...
 
[+]

Entropy:
6.2023

Code size:
197 KB (201,728 bytes)

Scan winflash32.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.