» dm650_670_fwupdate_v103.exe
Overview
Analysis
File Details
Downloads (1)

dm650_670_fwupdate_v103.exe

Firmware Update Utility

OLYMPUS IMAGING CORP.

File name:

Publisher:

OLYMPUS IMAGING CORP.

Product:

Firmware Update Utility

Version:

1, 3, 0, 0

MD5:

182337197595f465c5b4cf6ce8f31ff7

SHA-1:

5bdd6cd6fee008a545f3a571178cce1155f76cfc

SHA-256:

ecc6188d797e0eab3b87e1f9ff444ea8bb7999821220e673169eb7a55eda4c65

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

12/27/2024 7:10:38 PM UTC (today)

Scan engine

Detection

Engine version

Vba32 AntiVirus

BScope.Trojan.Jorik.IRCbot

3.12.26.4

File size:

3.2 MB (3,375,104 bytes)

Product version:

2, 1, 0, 0

Original file name:

DS800_FWUPDATE_V103.e

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\dm650_670_fwupdate_v103.exe

File PE Metadata

Compilation timestamp:

7/8/2009 8:47:58 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

CTPH (ssdeep):

49152:nl0sD3kdhbCzm5smRT7xjUvC6+gc0KJaSFd/9OaFVgWk1YP7YnP:nl0szkDCKHgkGs7i

Entry address:

0x30269

Entry point:

E8, 52, 98, 00, 00, E9, 16, FE, FF, FF, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, BC, AB, 45, 00, 33, C5, 50, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00, 00, C3, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, BC, AB, 45, 00, 33, C5, 50, 89, 65, F0, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00, 00, C3, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B... 
[+]

Entropy:

5.8911

Code size:

280 KB (286,720 bytes)

The file dm650_670_fwupdate_v103.exe has been seen being distributed by the following URL.

http://download.aws.olympus.eu/consumer/firmware/.../DM650_670_FWUPDATE_V103.exe

Scan dm650_670_fwupdate_v103.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.