× Obsługa plików cookie w przeglądarce jest wyłączona! Ta strona wymaga włączonej obsługi plików cookie, aby działać poprawnie
SHA256: 0c10aeb3fdf4fb0d36250d12578227599f8f2509861b6e09e27413aeb044dfa0
Nazwa pliku: file-6457398_exe1
Współczynnik wykrycia: 0 / 46
Data analizy: 2014-01-10 07:06:03 UTC ( 5 lat, 4 miesiące temu ) Zobacz najnowsze
Antywirus Wynik Uaktualnij
Ad-Aware 20140110
Yandex 20140109
AhnLab-V3 20140109
AntiVir 20140110
Antiy-AVL 20140109
Avast 20140110
AVG 20140110
Baidu-International 20131213
BitDefender 20140110
Bkav 20140109
ByteHero 20131227
CAT-QuickHeal 20140110
ClamAV 20140110
Commtouch 20140110
Comodo 20140110
DrWeb 20140110
Emsisoft 20140110
ESET-NOD32 20140110
F-Prot 20140110
Fortinet 20140110
GData 20140110
Ikarus 20140110
Jiangmin 20140110
K7AntiVirus 20140109
K7GW 20140109
Kaspersky 20140110
Kingsoft 20130829
Malwarebytes 20140110
McAfee 20140110
McAfee-GW-Edition 20140110
Microsoft 20140110
eScan 20140110
NANO-Antivirus 20140109
Norman 20140110
nProtect 20140109
Panda 20140109
Rising 20140110
Sophos AV 20140110
SUPERAntiSpyware 20140110
Symantec 20140109
TheHacker 20140108
TotalDefense 20140109
TrendMicro 20140110
TrendMicro-HouseCall 20140110
VBA32 20140109
VIPRE 20140110
ViRobot 20140110
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2013

Product Shockwave Flash
Original name FlashPlayerPlugin.exe
Internal name FlashPlayerPlugin.exe
File version 11,9,900,170
Description Adobe Flash Player 11.9 r900
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2014-01-08 13:08:48
Entry Point 0x0001B00E
Number of sections 4
.NET details
Module Version ID ff8fdfeb-6705-4154-bc49-1b265995dda0
TypeLib ID 434bed8f-2d70-4c07-ba60-a8bc540906ea
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 5
RT_GROUP_ICON 1
RT_VERSION 1
RT_MANIFEST 1
Number of PE resources by language
NEUTRAL 8
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
11.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.0.0.0

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
46592

EntryPoint
0x1b00e

OriginalFileName
FlashPlayerPlugin.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 2013

FileVersion
11,9,900,170

TimeStamp
2014:01:08 13:08:48+00:00

FileType
Win32 EXE

PEType
PE32

InternalName
FlashPlayerPlugin.exe

ProductVersion
11,9,900,170

FileDescription
Adobe Flash Player 11.9 r900

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CodeSize
102912

ProductName
Shockwave Flash

ProductVersionNumber
1.0.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

AssemblyVersion
11,9,900,170

Compressed bundles
File identification
MD5 f8987a4dd66edf76f1bbf41578c35a05
SHA1 ae73134c6cb1f6f1571af6a51893f1feeb512892
SHA256 0c10aeb3fdf4fb0d36250d12578227599f8f2509861b6e09e27413aeb044dfa0
ssdeep
3072:2R7TFRKjMNwdod8ZtU6fgOKr3kMPw202Y3MgP6gC+DzVthmNJX:2R/SHdCzxvOGgOMtO

authentihash efcbe0251595f0a12a5e1aeedc62417d2f45c7135a3b0bd705688b53a585d79f
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 147.0 KB ( 150528 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (55.0%)
Win64 Executable (generic) (20.7%)
Windows screen saver (9.8%)
Win32 Dynamic Link Library (generic) (4.9%)
Win32 Executable (generic) (3.3%)
Tags
peexe assembly usb-autorun

VirusTotal metadata
First submission 2014-01-10 07:06:03 UTC ( 5 lat, 4 miesiące temu )
Last submission 2014-11-17 08:09:39 UTC ( 4 lata, 6 miesięcy temu )
Nazwy plików ae73134c6cb1f6f1571af6a51893f1feeb512892
FlashPlayerPlugin.exe
file-6457398_exe1
0c10aeb3fdf4fb0d36250d12578227599f8f2509861b6e09e27413aeb044dfa0
vti-rescan
f8987a4dd66edf76f1bbf41578c35a05
F8987A4DD66ED.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
Brak komentarzy. Żaden z członków społeczności VirusTotal nie skomentował tego. Bądź pierwszy, by to zrobić!

Skomentuj

?
Dodaj komentarz

Nie jesteś zalogowany. Tylko zarejestrowani użytkownicy mogą dodawać komentarze, zalogować się i mieć swój głos!

Brak ocen. Nikt jeszcze nie oddał swojego głosu, bądź pierwszy!