home

winflash32.exe

MD5:
0b1a9f8a569492b6c210934d8ed89485

SHA-1:
e416c79add2492f6cd2df1374a3646e3641131c5

SHA-256:
8c86746aeff77482efc0888241e1073c1aae36dbdc533f7b66ef1fce2a064281

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
5/14/2025 11:24:20 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Comodo Security
Heur.Suspicious
15792

File size:
291 KB (297,984 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\ProgramData\lenovo\systemupdate\session\repository\g1uj21us\winflash32.exe

File PE Metadata
Compilation timestamp:
10/11/2012 5:38:43 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
2.21

CTPH (ssdeep):
6144:4f9leHPzvyL5OmYXK6wWnAZ1bDVIplx0Z06QL5S:4f9lebKVOmYXK6wWA/bD2plCZ1QLE

Entry address:
0x1160

Entry point:
55, 89, E5, 83, EC, 18, C7, 04, 24, 01, 00, 00, 00, FF, 15, C8, 84, 44, 00, E8, A8, FE, FF, FF, 90, 8D, B4, 26, 00, 00, 00, 00, 55, 89, E5, 53, 83, EC, 14, 8B, 45, 08, 8B, 00, 8B, 00, 3D, 91, 00, 00, C0, 77, 3B, 3D, 8D, 00, 00, C0, 72, 4B, BB, 01, 00, 00, 00, C7, 44, 24, 04, 00, 00, 00, 00, C7, 04, 24, 08, 00, 00, 00, E8, 73, 6D, 03, 00, 83, F8, 01, 0F, 84, FF, 00, 00, 00, 85, C0, 0F, 85, AA, 00, 00, 00, 31, C0, 83, C4, 14, 5B, 5D, C2, 04, 00, 3D, 94, 00, 00, C0, 74, 59, 3D, 96, 00, 00, C0, 74, 1B, 3D, 93...
 
[+]

Entropy:
6.4852

Code size:
221 KB (226,304 bytes)

Scan winflash32.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.