» flashplayer18.exe
Overview
Analysis
File Details

flashplayer18.exe

FlashPlayer

Apple INC

The executable flashplayer18.exe has been detected as malware by 21 anti-virus scanners. According to AVG, this software downloads additional adware offers during setup.

File name:

flashplayer18.exe

Publisher:

Adobe (signed by Apple INC)

Product:

FlashPlayer

Version:

18.0.0.0

MD5:

6dfd9d37d85498bb1dc946ff20eedf91

SHA-1:

53b65c2960fcb19dcfe4fb266fa1f32e04a9fb07

SHA-256:

1f8d3b7c5e71159667e1049b64a52c95cf78e527cfcc690aef4de826ab849a59

Scanner detections:

21 / 68

Status:

Malware

Analysis date:

11/15/2024 4:53:03 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Strictor.51375

338

AhnLab V3 Security

Trojan/Win32.Agent

2015.04.16

Avira AntiVirus

TR/Dldr.Agent.193056.1

3.6.1.96

avast!

Win32:GenMaliciousA-OGD [Trj]

2014.9-160302

AVG

Downloader.MSIL

2017.0.2816

Bitdefender

Gen:Variant.Strictor.51375

1.0.20.310

Comodo Security

UnclassifiedMalware

21776

Emsisoft Anti-Malware

Gen:Variant.Strictor.51375

8.16.03.02.02

ESET NOD32

MSIL/TrojanDownloader.Agent.AQY (variant)

10.11479

Fortinet FortiGate

MSIL/Agent.AQY!tr.dldr

3/2/2016

F-Secure

Gen:Variant.Strictor.51375

11.2016-02-03_4

G Data

Gen:Variant.Strictor.51375

16.3.25

IKARUS anti.virus

Win32.SuspectCrc

t3scan.1.8.9.0

Kaspersky

Trojan-Downloader.MSIL.Agent

14.0.0.577

McAfee

Artemis!6DFD9D37D854

5600.6472

MicroWorld eScan

Gen:Variant.Strictor.51375

17.0.0.186

NANO AntiVirus

Trojan.Win32.Agent.dqhcqt

0.30.16.1110

Panda Antivirus

Trj/CI.A

16.03.02.02

Qihoo 360 Security

HEUR/QVM03.0.Malware.Gen

1.0.0.1015

Trend Micro House Call

TROJ_GEN.R047H09D715

7.2.62

VIPRE Antivirus

Trojan.Win32.Generic

39372

File size:

188.5 KB (193,056 bytes)

Product version:

18.0.0.0

Trademarks:

FlashPlayer

Original file name:

Mylo.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\flashplayer18.exe

Digital Signature

Signed by:

Apple INC

Authority:

getaCert - www.getacert.com

Valid from:

3/15/2015 4:44:29 PM

Valid to:

5/14/2015 4:44:29 PM

Subject:

CN=dev.serv6.apple.com, OU=Software Development, O=Apple INC, L=1 Infinite Loop Cupertino, S=California, C=US

Issuer:

O=getaCert - www.getacert.com, L=Seattle, S=Washington, C=US

Serial number:

0CF2

File PE Metadata

Compilation timestamp:

4/6/2015 5:38:52 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

1536:KKGT6o4aVcXpPm/nduCnQi85lo4SssssITiZJHY/g:KKGmotSXgnQiQlo4SssssIkHY4

Entry address:

0x545E

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

13.5 KB (13,824 bytes)

Remove flashplayer18.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.