afpd1110721.exe

AeroFly Professional Deluxe Version 1.11.07.21

IPACS, support@ipacs.de

This is a setup program which is used to install the application. The file has been seen being downloaded from onedrive.live.com and multiple other hosts.
Publisher:
IPACS, support@ipacs.de

Product:
AeroFly Professional Deluxe Version 1.11.07.21

Description:
AeroFly Professional Deluxe Patch Version 1.11.07.21

Version:
1.11.07.21

MD5:
283cfcdc07e77dd3e9250ef90620e943

SHA-1:
e721b4371035d9961180df89c2fd556b7d60fd70

SHA-256:
941f862abbdfd3121bf54bb7673bb6d9b97380306dbf8e85d2fa390f5929b6e6

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
12/25/2024 6:59:41 AM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
HW32.CDB
1.3.0.4959

Comodo Security
Heur.Suspicious
18206

File size:
3.1 MB (3,219,335 bytes)

Product version:
1.11.07.21

Copyright:
Copyright by IPACS

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\afpd1110721.exe

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:2HVnVatLtzPeLTL3w+YiOkQjhnriFyv5eFOQru6/ixQUPVaGjfr9PXig:wkzPebw+YiOkkFqyBXjNxQ0/dyg

Entry address:
0x3274

Entry point:
55, 8B, EC, 83, C4, F4, B8, 3C, 32, 01, 00, E8, 98, E9, FF, FF, E8, 43, FF, FF, FF, E8, 7E, FF, FF, FF, E8, 15, FE, FF, FF, E8, AC, E4, FF, FF, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
9 KB (9,216 bytes)

The file afpd1110721.exe has been seen being distributed by the following 2 URLs.

https://onedrive.live.com/download.aspx?cid=638FBA8EED516F75&authKey=!ADWfVQO93kXO_AQ&resid=638FBA8EED516F75!345&ithint=.exe

Scan afpd1110721.exe - Powered by Reason Core Security