home

flash doctor.exe

D-Soft Flash Doctor

Dried Software

Publisher:
Dried Software

Product:
D-Soft Flash Doctor

Description:
universal recovery kit

Version:
1.0.4.1

MD5:
d3329424acabb5adb3f2cbcb92f4ce51

SHA-1:
5048708c3666065f238b4d5167512074abf434ee

SHA-256:
5eb0f7dc49f133bd9526a841d15457813d3961dcababe3b2d0ee64c68e284b1c

Scanner detections:
7 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/2/2024 5:29:18 PM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
FraudTool.AdwareRemover
7.1.1

Baidu Antivirus
HackTool.Win32.AdwareRemover
4.0.3.1425

Bkav FE
W32.Clod294.Trojan
1.3.0.4923

McAfee
Generic PUP.z!bc
5600.7229

Rising Antivirus
PE:Trojan.Win32.Generic.12755635!309679669
23.00.65.14203

VIPRE Antivirus
Threat.4150696
47580

ViRobot
Adware.AdwareRemover.1866752
2011.4.7.4223

File size:
1.8 MB (1,866,752 bytes)

Product version:
1.0.4.1

Copyright:
(C) Copyright 2008 Kazatsev V.V.

Trademarks:
(TM) Dried Software

Original file name:
D-Soft Flash Doctor.exe

File type:
Executable application (Win32 EXE)

Language:
Russian (Russia)

Common path:
C:\Program Files\multi flash kit\files\doctor\flash doctor.exe

File PE Metadata
Compilation timestamp:
6/20/1992 2:52:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:yKIzlMWDAe3+2+Gx5eVZzOphfof39DVayXUaijYNTZNQWkY5Z7:H43d+GyOuf35VaKUaxTVj

Entry address:
0x125CB4

Entry point:
55, 8B, EC, 83, C4, F0, 53, B8, 30, 44, 52, 00, E8, 17, 12, EE, FF, 8B, 1D, C0, B9, 52, 00, 8B, 03, E8, F2, 61, F4, FF, 8B, 03, BA, 40, 5D, 52, 00, E8, 66, 5C, F4, FF, 8B, 0D, 30, B7, 52, 00, 8B, 03, 8B, 15, 38, 2F, 52, 00, E8, EB, 61, F4, FF, 8B, 0D, 5C, B6, 52, 00, 8B, 03, 8B, 15, C0, 25, 52, 00, E8, D8, 61, F4, FF, 8B, 0D, A0, BB, 52, 00, 8B, 03, 8B, 15, 60, 2A, 52, 00, E8, C5, 61, F4, FF, 8B, 0D, 24, B9, 52, 00, 8B, 03, 8B, 15, 54, 2C, 52, 00, E8, B2, 61, F4, FF, 8B, 03, E8, 2B, 62, F4, FF, 5B, E8, B1...
 
[+]

Entropy:
6.6726

Developed / compiled with:
Microsoft Visual C++

Code size:
1.1 MB (1,198,080 bytes)

The file flash doctor.exe has been seen being distributed by the following 4 URLs.

http://vsesam.org/htdocs/wp-content/uploads/2013/.../Flash-Doctor.exe

http://www.ex.ua/.../117433941

http://www.ex.ua/.../117433941

http://profismart.org/.../df172695.php

Scan flash doctor.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.