» adobe flash player 2015.exe
Overview
Analysis
File Details
Downloads (5)

adobe flash player 2015.exe

MTEK GAMES LTDA

The executable adobe flash player 2015.exe has been detected as malware by 18 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from bit.ly and multiple other hosts.

File name:

Publisher:

MTEK GAMES LTDA

Description:

MTEK GAMES LTDA

Version:

1017.789.1258.2374

MD5:

bfa1c0bccc58ea8d1ed690bc3d6ef5fb

SHA-1:

07779d3eea94b2108e9608d0f67587668b01e39f

SHA-256:

2dfebe7eb069094649e9fe6e98dbaf0b2770e4fcb79340f24402e175d9c2eaeb

Scanner detections:

18 / 68

Status:

Malware

Analysis date:

7/8/2025 1:21:10 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Strictor.97316

459

AhnLab V3 Security

Malware/Win32.Generic

2015.10.01

Avira AntiVirus

TR/Samca.A.233

8.3.2.2

avast!

Win32:Malware-gen

2014.9-151102

AVG

Luhe.Fiha.A

2016.0.2937

Bitdefender

Gen:Variant.Strictor.97316

1.0.20.1530

Bkav FE

HW32.Packed

1.3.0.7237

Emsisoft Anti-Malware

Gen:Variant.Strictor.97316

8.15.11.02.09

ESET NOD32

Win32/TrojanDownloader.Banload.WOK (variant)

9.12415

Fortinet FortiGate

W32/Banload.WOK!tr.dldr

11/2/2015

F-Secure

Gen:Variant.Strictor.97316

11.2015-02-11_2

G Data

Gen:Variant.Strictor.97316

15.11.25

IKARUS anti.virus

Trojan-Downloader.Banload

t3scan.1.9.5.0

Kaspersky

UDS:DangerousObject.Multi.Generic

14.0.0.1180

McAfee

Artemis!BFA1C0BCCC58

5600.6593

MicroWorld eScan

Gen:Variant.Strictor.97316

16.0.0.918

Trend Micro

TROJ_GEN.R00UC0EJB15

10.465.02

Vba32 AntiVirus

Trojan.Svchost.5505

3.12.26.4

File size:

1.3 MB (1,411,961 bytes)

Product version:

1.0.0.0

File type:

Executable application (Win32 EXE)

Language:

Turco (Turquia)

Common path:

C:\users\{user}\downloads\adobe flash player 2015.exe

File PE Metadata

Compilation timestamp:

6/19/1992 7:22:17 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

24576:6U0ggri4AfqaH65kCVWpwSUjEjLBiaC7u4K2l0bHv7gkjHhjMYlsN+TTak0:6DggG4ASaCkfwBXnC9fbHvkIHhYXcaf

Entry address:

0x2EA000

Entry point:

60, C1, D7, FD, 2B, EB, F9, 8B, F9, 72, 01, F9, E8, 0B, 00, 00, 00, 7F, 83, 04, 24, 04, C3, 76, 11, 77, 0F, 7A, 83, C4, 04, 72, F6, 73, F4, 78, E8, E9, FF, FF, FF, 75, EB, F8, 76, F8, 48, B9, B7, A0, 6E, 00, BA, 3A, CD, 06, BF, BB, F9, 70, C7, 3F, 66, 81, C0, BF, 7F, 81, C3, 82, 90, 62, 60, E9, 07, 00, 00, 00, 71, 01, 4D, 66, C1, C0, A8, 68, 3C, 00, 00, 00, 81, DA, 1F, 54, 4E, CE, 5E, 73, 01, F9, 8B, 39, FC, 77, 01, 40, 03, FB, 66, 23, E8, C1, C7, 07, E9, 03, 00, 00, 00, 66, D3, E5, 83, E9, FC, 33, 39, 83... 
[+]

Code size:

3 MB (3,130,880 bytes)

The file adobe flash player 2015.exe has been seen being distributed by the following 5 URLs.

http://bit.ly/1M2MtfY

http://bit.ly/1hcfeyf

http://bit.ly/1JEOq0e

https://3irqbg-dm2305.files.1drv.com/.../Adobe_Flash_Player_2015_.exe

https://3irqbg-dm2305.files.1drv.com/.../Adobe Flash Player 2015 .exe

Remove adobe flash player 2015.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.