× Obsługa plików cookie w przeglądarce jest wyłączona! Ta strona wymaga włączonej obsługi plików cookie, aby działać poprawnie
SHA256: 744bae3c6f64cc4c9fb8095d57b54c7d0c827b6f5dc113aa289067f687182fc7
Nazwa pliku: file-6454703_xxx
Współczynnik wykrycia: 0 / 48
Data analizy: 2014-01-09 12:26:48 UTC ( 5 lat, 4 miesiące temu ) Zobacz najnowsze
Antywirus Wynik Uaktualnij
Ad-Aware 20140109
Yandex 20140108
AhnLab-V3 20140109
AntiVir 20140109
Antiy-AVL 20140109
Avast 20140109
AVG 20140109
Baidu-International 20131213
BitDefender 20140109
Bkav 20140109
ByteHero 20131227
CAT-QuickHeal 20140109
ClamAV 20140109
Commtouch 20140109
Comodo 20140109
DrWeb 20140109
Emsisoft 20140109
ESET-NOD32 20140109
F-Prot 20140109
F-Secure 20140109
Fortinet 20140109
GData 20140109
Ikarus 20140109
Jiangmin 20140109
K7AntiVirus 20140108
K7GW 20140109
Kaspersky 20140109
Kingsoft 20130829
Malwarebytes 20140109
McAfee 20140109
McAfee-GW-Edition 20140109
Microsoft 20140109
eScan 20140109
NANO-Antivirus 20140109
Norman 20140109
nProtect 20140109
Panda 20140109
Rising 20140109
Sophos AV 20140109
SUPERAntiSpyware 20140108
Symantec 20140109
TheHacker 20140108
TotalDefense 20140108
TrendMicro 20140109
TrendMicro-HouseCall 20140109
VBA32 20140109
VIPRE 20140109
ViRobot 20140109
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2013

Product Shockwave Flash
Original name FlashPlayerPlugin.exe
Internal name FlashPlayerPlugin.exe
File version 11,9,900,170
Description Adobe Flash Player 11.9 r900
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2013-12-23 12:39:26
Entry Point 0x0001B00E
Number of sections 4
.NET details
Module Version ID 62e52e99-06d6-4a2b-b300-8d60313fde87
TypeLib ID 434bed8f-2d70-4c07-ba60-a8bc540906ea
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 5
RT_GROUP_ICON 1
RT_VERSION 1
RT_MANIFEST 1
Number of PE resources by language
NEUTRAL 8
PE resources
Debug information
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
11.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.0.0.0

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
Adobe Flash Player 11.9 r900

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unicode

InitializedDataSize
46592

EntryPoint
0x1b00e

OriginalFileName
FlashPlayerPlugin.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 2013

FileVersion
11,9,900,170

TimeStamp
2013:12:23 13:39:26+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
FlashPlayerPlugin.exe

ProductVersion
11,9,900,170

SubsystemVersion
4.0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CodeSize
102912

ProductName
Shockwave Flash

ProductVersionNumber
1.0.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

AssemblyVersion
11,9,900,170

Compressed bundles
File identification
MD5 2ce34facbb7a9b09da92c066d12afe48
SHA1 a6df8a19e56aeda04f3f52a0f0edab0cb84cb68e
SHA256 744bae3c6f64cc4c9fb8095d57b54c7d0c827b6f5dc113aa289067f687182fc7
ssdeep
3072:sR7TFRKjMNwdod8ZtU6fgOKr3kMPwL2WmMgP6gC+DzVthmNJX:sR/SHdCzxvObgOMtO

authentihash 3dd9cd4c4cd60219835c2d93ca693f828448a40662f18fabbe7f7b5abf8f140e
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 147.0 KB ( 150528 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (55.0%)
Win64 Executable (generic) (20.7%)
Windows screen saver (9.8%)
Win32 Dynamic Link Library (generic) (4.9%)
Win32 Executable (generic) (3.3%)
Tags
peexe assembly

VirusTotal metadata
First submission 2013-12-28 02:47:30 UTC ( 5 lat, 4 miesiące temu )
Last submission 2017-06-13 12:09:51 UTC ( 1 rok, 11 miesięcy temu )
Nazwy plików sample4.exe
FlashPlayerPlugin.exe
18773990
744bae3c6f64cc4c9fb8095d57b54c7d0c827b6f5dc113aa289067f687182fc7
output.18773990.txt
2ce34facbb7a9b09da92c066d12afe48.exe
vti-rescan
sample4.exe
file-6454703_xxx
2ce34facbb7a9b09da92c066d12afe48
744bae3c6f64cc4c9fb8095d57b54c7d0c827b6f5dc113aa289067f687182fc7.bin
2.exe
sample4.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
Brak komentarzy. Żaden z członków społeczności VirusTotal nie skomentował tego. Bądź pierwszy, by to zrobić!

Skomentuj

?
Dodaj komentarz

Nie jesteś zalogowany. Tylko zarejestrowani użytkownicy mogą dodawać komentarze, zalogować się i mieć swój głos!

Brak ocen. Nikt jeszcze nie oddał swojego głosu, bądź pierwszy!