home

acrobatprodc_00000000000000000000000409.exe

Adobe Acrobat Installer

Adobe

This is a setup and installation application. The file has been seen being downloaded from ardownload.adobe.com.
Publisher:
Adobe

Product:
Adobe Acrobat Installer

Version:
3.6.7.1

MD5:
13a44f4dafd08b17cd76e351fd0dbfa6

SHA-1:
bc7343819f9cf005720f56fe92bb6c8f2f9d56b5

SHA-256:
c391e6e7fb55297c836823335342b81c0eb2e73c3d0ec2007d7d81ff7ea23789

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 4:39:04 AM UTC  (today)

File size:
2.1 MB (2,163,816 bytes)

Product version:
1.6.0.8

Copyright:
Copyright © Adobe Systems Incorporated

Original file name:
host.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\acrobatprodc_00000000000000000000000409.exe

File PE Metadata
Compilation timestamp:
7/22/2015 6:45:21 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
49152:woa5UWuYJNZT7d9PrHsv0yF1VvYjdLCuAufYw5184:7a5UxGNZvTbs7x8NCHIYwj8

Entry address:
0x6659F

Entry point:
60, 0F, BA, E1, EC, 84, E3, 52, 68, 33, C4, 13, 00, 3B, D6, 71, 04, 0F, BA, F7, 0A, F7, C0, 0C, 76, E4, 4C, 84, F3, 47, 41, EB, 08, 0F, B7, C1, FE, C4, 0F, A3, C7, 0F, AF, C5, 68, E0, 13, 00, 00, 0F, C0, EA, 4A, 5D, 0F, C0, EE, 29, D2, 0F, BE, D8, 81, ED, A6, 0A, 00, 00, FF, CA, 0F, A4, FF, ED, 03, FA, 8A, E5, 88, F4, 69, D1, DD, 51, 42, 1E, 0F, AF, CD, 81, ED, B4, F1, FF, FF, D2, E6, 41, 81, ED, 4D, 0E, 00, 00, 0F, BB, C3, 42, 0F, C8, 69, C6, 26, 6A, 20, 3C, 0F, AF, DD, 8D, 05, DD, 80, DC, 72, 30, D7, C6...
 
[+]

Entropy:
7.3665

Code size:
489 KB (500,736 bytes)

The file acrobatprodc_00000000000000000000000409.exe has been seen being distributed by the following URL.

http://ardownload.adobe.com/pub/adobe/acrobat/win/DLM/.../acrobatproDC_00000000000000000000000409.exe

Scan acrobatprodc_00000000000000000000000409.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.