flashplayer18.exe

FlashPlayer

Apple INC

The executable flashplayer18.exe has been detected as malware by 21 anti-virus scanners. According to AVG, this software downloads additional adware offers during setup.
Publisher:
Adobe  (signed by Apple INC)

Product:
FlashPlayer

Version:
18.0.0.0

MD5:
6dfd9d37d85498bb1dc946ff20eedf91

SHA-1:
53b65c2960fcb19dcfe4fb266fa1f32e04a9fb07

SHA-256:
1f8d3b7c5e71159667e1049b64a52c95cf78e527cfcc690aef4de826ab849a59

Scanner detections:
21 / 68

Status:
Malware

Analysis date:
12/30/2024 6:35:10 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Strictor.51375
338

AhnLab V3 Security
Trojan/Win32.Agent
2015.04.16

Avira AntiVirus
TR/Dldr.Agent.193056.1
3.6.1.96

avast!
Win32:GenMaliciousA-OGD [Trj]
2014.9-160302

AVG
Downloader.MSIL
2017.0.2816

Bitdefender
Gen:Variant.Strictor.51375
1.0.20.310

Comodo Security
UnclassifiedMalware
21776

Emsisoft Anti-Malware
Gen:Variant.Strictor.51375
8.16.03.02.02

ESET NOD32
MSIL/TrojanDownloader.Agent.AQY (variant)
10.11479

Fortinet FortiGate
MSIL/Agent.AQY!tr.dldr
3/2/2016

F-Secure
Gen:Variant.Strictor.51375
11.2016-02-03_4

G Data
Gen:Variant.Strictor.51375
16.3.25

IKARUS anti.virus
Win32.SuspectCrc
t3scan.1.8.9.0

Kaspersky
Trojan-Downloader.MSIL.Agent
14.0.0.577

McAfee
Artemis!6DFD9D37D854
5600.6472

MicroWorld eScan
Gen:Variant.Strictor.51375
17.0.0.186

NANO AntiVirus
Trojan.Win32.Agent.dqhcqt
0.30.16.1110

Panda Antivirus
Trj/CI.A
16.03.02.02

Qihoo 360 Security
HEUR/QVM03.0.Malware.Gen
1.0.0.1015

Trend Micro House Call
TROJ_GEN.R047H09D715
7.2.62

VIPRE Antivirus
Trojan.Win32.Generic
39372

File size:
188.5 KB (193,056 bytes)

Product version:
18.0.0.0

Copyright:
Copyright © 2015

Trademarks:
FlashPlayer

Original file name:
Mylo.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\flashplayer18.exe

Digital Signature
Signed by:

Authority:
getaCert - www.getacert.com

Valid from:
3/15/2015 4:44:29 PM

Valid to:
5/14/2015 4:44:29 PM

Subject:
CN=dev.serv6.apple.com, OU=Software Development, O=Apple INC, L=1 Infinite Loop Cupertino, S=California, C=US

Issuer:
O=getaCert - www.getacert.com, L=Seattle, S=Washington, C=US

Serial number:
0CF2

File PE Metadata
Compilation timestamp:
4/6/2015 5:38:52 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
1536:KKGT6o4aVcXpPm/nduCnQi85lo4SssssITiZJHY/g:KKGmotSXgnQiQlo4SssssIkHY4

Entry address:
0x545E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
13.5 KB (13,824 bytes)

Remove flashplayer18.exe - Powered by Reason Core Security