flashplayer.exe

Patrizias

Flop

Publisher:
Flop

Product:
Patrizias

Description:
Aeronaut

Version:
1.00

MD5:
351d9a013296104be457266814c117c9

SHA-1:
48411f6c5362d9261c8d9a609bf00dec392b5616

SHA-256:
407cda1b58583132265ba29261fbf83797bab790f355c5cafa1f493e65ec36b8

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 1:07:17 AM UTC  (today)

File size:
500 KB (512,048 bytes)

Product version:
1.00

Original file name:
Linn.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\flashplayer.exe

File PE Metadata
Compilation timestamp:
4/22/2016 8:16:45 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
6144:qQvm3Qv/pSt+7nLRhhYmo/owl1/A+ZjfHkvkroT0P:lm0pXh0f1PjPkisU

Entry address:
0x11B0

Entry point:
68, 90, 12, 40, 00, E8, F0, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 38, 00, 00, 00, 00, 00, 00, 00, 8A, CA, E6, 28, 7E, 1C, FB, 40, 8D, D4, A5, A6, 07, E9, 48, 0B, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 04, 00, 00, 00, 4C, 75, 6E, 6B, 61, 37, 00, 02, 00, 00, 00, 00, 07, 00, 00, 00, 1C, 31, 40, 00, 07, 00, 00, 00, D0, 30, 40, 00, 07, 00, 00, 00, 68, 30, 40, 00, 07, 00, 00, 00, 24, 30, 40, 00, 07, 00, 00, 00, DC, 2F, 40, 00, 07, 00, 00, 00, 98, 2F, 40, 00, 07, 00, 00, 00, 50, 2F, 40, 00...
 
[+]

Entropy:
5.2790

Developed / compiled with:
Microsoft Visual Basic v5.0/v6.0

Code size:
484 KB (495,616 bytes)

The file flashplayer.exe has been seen being distributed by the following URL.

Scan flashplayer.exe - Powered by Reason Core Security