fritz.box_7490.en-de-es-it-fr-pl.06.20.recover-image.exe

AVM Berlin

This is a setup program which is used to install the application.
Publisher:
AVM Berlin

Description:
AvmRecover

Version:
2, 0, 0, 9

MD5:
c1b05d14cd625c74bf36f5d188432499

SHA-1:
328ccd8272d74b83b0f49dc9db7449f0cb9e1c81

SHA-256:
c93ce53ecdfb55e5cfeb198793610b6a94bd0a563b608680ba537ebdd841b015

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
12/28/2024 6:16:27 PM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
HW32.Packed
1.3.0.6379

File size:
23.8 MB (25,006,080 bytes)

Product version:
2, 0, 0, 0

Copyright:
Copyright © 2013

Original file name:
AvmRecover.exe

File type:
Executable application (Win32 EXE)

Language:
German (Germany)

Common path:
C:\users\{user}\downloads\programs\fritz.box_7490.en-de-es-it-fr-pl.06.20.recover-image.exe

File PE Metadata
Compilation timestamp:
10/18/2014 11:14:01 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
393216:mTP5z334g7zi4yYZeR3aGxz/30oHank9ew/FHGYYRHiQwGJFHoK/kgce09WxZGLa:m1og7zByYkoez/30kgk9TmYNaFHoK/kM

Entry address:
0x1245

Entry point:
E8, 7C, 15, 00, 00, E9, 16, FE, FF, FF, E8, A3, 04, 00, 00, FF, 74, 24, 04, E8, FA, 02, 00, 00, FF, 35, AC, C7, BB, 01, E8, E9, 0D, 00, 00, 68, FF, 00, 00, 00, FF, D0, 83, C4, 0C, C3, 68, F8, 23, 43, 00, FF, 15, E8, 21, 43, 00, 85, C0, 74, 16, 68, E8, 23, 43, 00, 50, FF, 15, E4, 21, 43, 00, 85, C0, 74, 06, FF, 74, 24, 04, FF, D0, C3, FF, 74, 24, 04, E8, D1, FF, FF, FF, 59, FF, 74, 24, 04, FF, 15, C0, 21, 43, 00, CC, 6A, 08, E8, 1B, 17, 00, 00, 59, C3, 6A, 08, E8, 3A, 16, 00, 00, 59, C3, 56, 8B, F0, EB, 0B...
 
[+]

Entropy:
7.9959  (probably packed)

Code size:
196 KB (200,704 bytes)

The file fritz.box_7490.en-de-es-it-fr-pl.06.20.recover-image.exe has been seen being distributed by the following URL.