home

winflash64.exe

Phoenix Technologies Ltd.

Publisher:
Phoenix Technologies Ltd.  (signed and verified)

MD5:
0e494de438ed73be1e9ee935e3756a79

SHA-1:
7739867cbf09ef83a42e139ac5288a5c98529ab9

SHA-256:
f6158f7f97316686d28745e5243afc04fcf38fea640f9633d64c5c2bf9cbfc0e

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 1:44:52 PM UTC  (today)

File size:
356 KB (364,496 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\winflash64.exe

Digital Signature
Signed by:
Phoenix Technologies Ltd.

Authority:
VeriSign, Inc.

Valid from:
2/10/2012 9:00:00 AM

Valid to:
1/21/2015 8:59:59 AM

Subject:
CN=Phoenix Technologies Ltd., OU=CSS Core Features Development, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Phoenix Technologies Ltd., L=Milpitas, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
46E79B91EBEFA4D3229B32650E85D0FB

File PE Metadata
Compilation timestamp:
9/19/2012 4:18:53 PM

OS version:
4.0

OS bitness:
Win64

Subsystem:
Windows Console

Linker version:
2.20

CTPH (ssdeep):
6144:0LHw1hJyHcVEAv3i6XcqlC57a3xCb7K2jMEGOS0:R/JHV5i6Xs57a0rj5GZ0

Entry address:
0x1530

Entry point:
48, 83, EC, 28, C7, 05, F2, C3, 05, 00, 00, 00, 00, 00, E8, 5D, FC, 03, 00, 48, 83, C4, 28, E9, 64, FC, FF, FF, EB, 02, 90, 90, 48, 83, EC, 28, C7, 05, D2, C3, 05, 00, 01, 00, 00, 00, E8, 3D, FC, 03, 00, 48, 83, C4, 28, E9, 44, FC, FF, FF, EB, 02, 90, 90, 56, 53, 48, 89, CB, 48, 83, EC, 28, 48, 8B, 01, 8B, 00, 3D, 91, 00, 00, C0, 77, 3B, 3D, 8D, 00, 00, C0, 72, 74, BE, 01, 00, 00, 00, 31, D2, B9, 08, 00, 00, 00, E8, 43, 0C, 04, 00, 48, 83, F8, 01, 0F, 84, 29, 01, 00, 00, 48, 85, C0, 74, 37, B9, 08, 00, 00...
 
[+]

Entropy:
6.2020

Code size:
262 KB (268,288 bytes)

Scan winflash64.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.