» xln online installer 32bit.exe
Overview
Analysis
File Details

xln online installer 32bit.exe

XLN Audio AB

The executable xln online installer 32bit.exe has been detected as malware by 11 anti-virus scanners.

File name:

Publisher:

XLN Audio AB (signed and verified)

MD5:

fc793f1a1759b9085e65d4a87533ff1a

SHA-1:

03203b7a4be795a5e4d14ee113a0a8480a70c3e0

SHA-256:

55a9934ca6151600838588bbbccf6eed2edd80fc12d145cf2052c3b6c611d732

Scanner detections:

11 / 68

Status:

Malware

Analysis date:

4/26/2024 3:47:05 AM UTC (today)

Scan engine

Detection

Engine version

avast!

Win32:Parite

150717-0

AVG

Win32/Parite

2015.0.4355

Dr.Web

Win32.Parite.2

9.0.1.05190

Emsisoft Anti-Malware

Win32.Parite

11.5.0.6191

ESET NOD32

Win32/Parite.B virus

8.0.319.0

F-Prot

W32/Parite.B

4.6.5.141

Kaspersky

Virus.Win32.Parite

15.0.0.562

McAfee

Virus.W32/Pate.b

18.0.204.0

Microsoft Security Essentials

Threat.Undefined

1.217.1571.0

Norman

Win32.Parite.B

10.04.2016 15:29:17

Sophos

Virus 'W32/Parite-B'

5.23

File size:

3.4 MB (3,534,810 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\Documents and Settings\{user}\Local settings\temp\{random}.tmp\xln-online-installer-win\xln online installer 32bit.exe

Digital Signature

Signed by:

XLN Audio AB

Authority:

COMODO CA Limited

Valid from:

11/5/2012 12:00:00 AM

Valid to:

11/5/2013 11:59:59 PM

Subject:

CN=XLN Audio AB, O=XLN Audio AB, STREET=Hornsbruksgatan 19A, L=Stockholm, S=-, PostalCode=11734, C=SE

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

009CD99347B6FBDC4BDFFD84930C92986E

File PE Metadata

Compilation timestamp:

11/30/2012 10:28:30 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

49152:PeVvM140iAkV9/FASI2hlcAt7pMc80WSnN5gdvmFqmcTuy0s07GU0IeQ6ihKynKj:Pe2uznq2hl3PQ2NQvu13qO0

Entry address:

0x358000

Entry point:

68, 79, F5, 07, 00, 58, BE, 20, 80, 75, 00, 68, 98, 05, 00, 00, 5F, 90, FF, 34, 3E, 31, 04, 24, 8F, 04, 3E, 90, 90, 83, EF, 03, 4F, 90, 75, EE, 91, 88, 06, 00, 79, F5, 07, 00, 79, F5, 47, 00, 35, DA, 22, 00, 49, CD, 34, 00, A3, CA, 34, 00, 79, 45, 05, 00, 78, F5, 07, 00, 95, 05, 6F, 00, D1, BA, 77, 00, BB, BA, 77, 00, 15, C7, 37, 00, DF, BA, 37, 00, B9, BA, 37, 00, 95, 29, 2F, 00, DF, BA, 37, 00, B9, BA, 37, 00, 79, F5, 07, 00, 79, F5, 07, 00, 79, F5, 07, 00, 79, F5, 07, 00, E5, 04, 6F, 00, 79, F5, 07, 00... 
[+]

Code size:

2.6 MB (2,676,736 bytes)

Remove xln online installer 32bit.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.