home

fwinfo.exe

LG Firmware Autoupdate

BitLeader

Publisher:
BitLeader

Product:
LG Firmware Autoupdate

Version:
1.00

MD5:
b7ed24f370a81841e9b5e6225be9dcad

SHA-1:
4d9a0fda033d699a7d2a243c0a060f70e88c3460

SHA-256:
360f99abd3344798378cb38397725dd02f22c2a4cc23d7a6731a3e542efb9de5

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/27/2024 6:27:49 AM UTC  (today)

Scan engine
Detection
Engine version

NANO AntiVirus
Trojan.Win32.MLW.cubvp
0.22.6.49175

File size:
48 KB (49,152 bytes)

Product version:
1.00

Original file name:
fwinfo.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\lg_fwupdate\fwinfo.exe

File PE Metadata
Compilation timestamp:
8/13/2009 5:16:25 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
768:JGFvtCpD2d1jeajeDjemjewjeUjeYIkFGUMMZwa2EjE3VeevGt+aF:uFChAteMe3eQe+e6eY3FgYwa2EjEl+tf

Entry address:
0x1108

Entry point:
68, 74, 12, 40, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 38, 00, 00, 00, 00, 00, 00, 00, FA, 64, 7E, 2C, D5, 59, 59, 43, 91, 0E, E1, C7, 1C, 0E, E9, F6, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 30, 30, 30, 32, 30, 34, 66, 77, 69, 6E, 66, 6F, 00, 2D, 00, 00, 00, 00, 01, 00, 04, 00, 90, 2C, 40, 00, 00, 00, 00, 00, FF, FF, FF, FF, FF, FF, FF, FF, 00, 00, 00, 00, A4, 2D, 40, 00, 14, B0, 40, 00, 00, 00, 00, 00, 10, E5, 1B, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 88, 11, 40, 00...
 
[+]

Entropy:
5.1650

Developed / compiled with:
Microsoft Visual Basic v5.0/v6.0

Code size:
40 KB (40,960 bytes)

The file fwinfo.exe has been seen being distributed by the following URL.

http://lgodd.lge.com/fwnewau/.../fwinfo.exe

Scan fwinfo.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.