home

helitraffic_2009.exe

Flight1 Purchasing Module

Flight1, Inc.

This is a setup program which is used to install the application. The file has been seen being downloaded from fullring-north.com.
Publisher:
Flight1, Inc.

Product:
Flight1 Purchasing Module

Version:
3.00.0003

MD5:
970a5c86d0508961dd465cdafea48e1b

SHA-1:
33c7d2f96ffaf7632e1d0f33a5541337ee34a69b

SHA-256:
609f08af868b77e0a8d77c71faebcbc303f68201def232a84fee76d10577fae4

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 4:08:27 AM UTC  (today)

File size:
3.1 MB (3,219,779 bytes)

Product version:
3.00.0003

Copyright:
Copyright 2005 Flight1, Inc.

Original file name:
flight1-303.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\helitraffic_2009.exe

File PE Metadata
Compilation timestamp:
2/20/2008 11:32:32 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:dSrWn5A2BLCaz4sKPZ04VxYT9ZQx+CnvS2V7:dSrqyC8n04Vx4goN07

Entry address:
0xA3014

Entry point:
B8, 00, 00, 00, 00, 60, 0B, C0, 74, 68, E8, 00, 00, 00, 00, 58, 05, 53, 00, 00, 00, 80, 38, E9, 75, 13, 61, EB, 45, DB, 2D, 37, 30, 4A, 00, FF, FF, FF, FF, FF, FF, FF, FF, 3D, 40, E8, 00, 00, 00, 00, 58, 25, 00, F0, FF, FF, 33, FF, 66, BB, 19, 5A, 66, 83, C3, 34, 66, 39, 18, 75, 12, 0F, B7, 50, 3C, 03, D0, BB, E9, 44, 00, 00, 83, C3, 67, 39, 1A, 74, 07, 2D, 00, 10, 00, 00, EB, DA, 8B, F8, B8, 4A, F7, 14, 00, 03, C7, B9, 6D, 32, 0A, 00, 03, CF, EB, 0A, B8, 4A, F7, 54, 00, B9, 6D, 32, 4A, 00, 50, 51, E8, 87...
 
[+]

Entropy:
7.9283

Packer / compiler:
Themida/WinLicense V1.8.0.2 +

Code size:
596 KB (610,304 bytes)

The file helitraffic_2009.exe has been seen being distributed by the following URL.

http://fullring-north.com/.../Heli Traffic 2009.exe

Scan helitraffic_2009.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.