samsungflowdriver.exe

SAMSUNG ELECTRONICS CO,.LTD.

This is a setup program which is used to install the application. The file has been seen being downloaded from www.samsung.com.
Publisher:
SAMSUNG ELECTRONICS CO,.LTD.  (signed and verified)

MD5:
185ec1a20b269f5db981efc90e19dabf

SHA-1:
e2f5b28997f010010247288260e5c351f0113850

SHA-256:
1462ff5285eceee5734026d6f7a0480891ec8fbc77bd55154ca6f9babac4f9a1

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/4/2024 7:59:45 AM UTC  (today)

File size:
3.2 MB (3,311,128 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\packages\samsungelectronicscoltd.samsungflux_wyx1vj98g3asy\localstate\samsungflowdriver.exe

Digital Signature
Authority:
Symantec Corporation

Valid from:
8/28/2015 2:00:00 AM

Valid to:
8/28/2017 1:59:59 AM

Subject:
CN="SAMSUNG ELECTRONICS CO,.LTD.", O="SAMSUNG ELECTRONICS CO,.LTD.", L=SUWON-SHI, S=SUWON-SHI, C=KR, SERIALNUMBER=124-81-00998, OID.2.5.4.15=Private Organization, OID.1.3.6.1.4.1.311.60.2.1.3=KR

Issuer:
CN=Symantec Class 3 Extended Validation Code Signing CA - G2, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
60CECB23A57D18FB5E175BB2A08E55ED

File PE Metadata
Compilation timestamp:
12/27/2015 7:26:07 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:2VQ+AORr3bJlcWY3Kim6ZfbFFeY3NK4A2iE6:QvJhUFNTEeNCE6

Entry address:
0x32A0

Entry point:
81, EC, D4, 02, 00, 00, 55, 56, 6A, 20, 33, ED, 5E, 89, 6C, 24, 0C, 68, 01, 80, 00, 00, C7, 44, 24, 0C, 00, A3, 40, 00, 89, 6C, 24, 18, FF, 15, B0, 80, 40, 00, FF, 15, AC, 80, 40, 00, 66, 3D, 06, 00, 74, 11, 55, E8, 51, 31, 00, 00, 3B, C5, 74, 07, 68, 00, 0C, 00, 00, FF, D0, 53, 57, 68, F4, A2, 40, 00, E8, CE, 30, 00, 00, 68, EC, A2, 40, 00, E8, C4, 30, 00, 00, 68, E0, A2, 40, 00, E8, BA, 30, 00, 00, 6A, 09, E8, 1F, 31, 00, 00, 6A, 07, E8, 18, 31, 00, 00, A3, 04, 4F, 43, 00, FF, 15, 44, 80, 40, 00, 55, FF...
 
[+]

Code size:
25 KB (25,600 bytes)

The file samsungflowdriver.exe has been seen being distributed by the following URL.

Scan samsungflowdriver.exe - Powered by Reason Core Security