home

filmi-izle.exe

Video Player Plugin

Dizi Company LTDSTI

This is a setup program which is used to install the application. The file has been seen being downloaded from bufiyataolmaz.com.
Publisher:
Dizi Company LTDSTI

Product:
Video Player Plugin

Description:
Video Player

Version:
1.0.0.0

MD5:
caaa937d203a887d0dab180165284995

SHA-1:
2ad84df3de834382c4f8fc543ea1af108e8b0bd5

SHA-256:
5d60575d007741d965f3ee62c1cbc8ffbff4e1b29bf3e068fe4c7e04388798b0

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/23/2024 4:42:02 AM UTC  (today)

Scan engine
Detection
Engine version

Trend Micro House Call
TROJ_GEN.F47V1119
7.2.153

File size:
387.5 KB (396,800 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2012

Trademarks:
VideoPlayer LTD

Original file name:
VideoPlayer.exe

File type:
Executable application (Win32 EXE)

Language:
Turkish (Turkey)

Common path:
C:\users\{user}\downloads\filmi-izle.exe

File PE Metadata
Compilation timestamp:
11/18/2012 2:29:31 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:KLAX1I709jJrKljlewNs0EqFja0lD9QiaLcFm0IL13ZlBhy73hjozJXgEHw41Bra:4AxKljlV9QpbjHlngWNlc

Entry address:
0x49C9E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
287.5 KB (294,400 bytes)

The file filmi-izle.exe has been seen being distributed by the following URL.

http://bufiyataolmaz.com/.../FiLMi-iZLE.exe

Scan filmi-izle.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.