AcroRd32.exe

Adobe Reader

Adobe Systems, Incorporated

This is installed with multiple programs including Adobe Creative Suite 6 Master Collection and Adobe Reader XI. The file has been seen being downloaded from email16.secureserver.net and multiple other hosts.
Publisher:
Adobe Systems Incorporated  (signed by Adobe Systems, Incorporated)

Product:
Adobe Reader

Description:
Adobe Reader

Version:
11.0.0.379

MD5:
ca0c67ba7aeba6aed5ddb852e6eea811

SHA-1:
8b8db3434cac650ba795ff9aa8f89a24e4b83410

SHA-256:
1c52b50019786ce77c3338f470a9193f90f71080196198357744cb065b7c6851

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 12:56:19 AM UTC  (today)

File size:
1.3 MB (1,343,112 bytes)

Product version:
11.0.0.379

Copyright:
Copyright 1984-2012 Adobe Systems Incorporated and its licensors. All rights reserved.

Original file name:
AcroRd32.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\adobe\reader 11.0\reader\acrord32.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
9/20/2012 9:00:00 AM

Valid to:
9/21/2013 8:59:59 AM

Subject:
CN="Adobe Systems, Incorporated", OU=Digital ID Class 3 - Microsoft Software Validation v2, OU=Acrobat XI, O="Adobe Systems, Incorporated", L=San Jose, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
09AC064D052817FF4D7942EA6976C3D8

File PE Metadata
Compilation timestamp:
9/24/2012 12:21:02 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
24576:ifrPEmDvg1eg8lYLkpSFZmr8lcrNJZECOHUNt7nizsX4O8b8ITDnlq+YV:vmDvkRAuFkuoJZEtMFniQX4O8b8ITDn+

Entry address:
0x1039

Entry point:
E8, F3, 01, 00, 00, E9, EC, 79, 0B, 00, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 55, 8B, EC, 6A, FE, 68, 20, 50, 51, 00, 68, 10, CA, 40, 00, 64, A1, 00, 00, 00, 00, 50, 83, EC, 5C, A1, 38, 26, 52, 00, 31, 45, F8, 33, C5, 89, 45, E4, 53, 56, 57, 50, 8D, 45, F0, 64, A3, 00, 00, 00, 00, 89, 65, E8, 8B, 5D, 08, 8B, 45, 0C, 89, 45, A4, 8B, 75, 14, 8B, 4D, 18, 89, 4D, A0, BF, 22, 00, 00, C0, 89, 7D, AC, 85, F6, 74, 21, 8B, 46, 08, 85, C0, 74, 1A, 8B, 48, 04, 85, C9, 74, 13, 66, 83, 38, 08, 72, 0D, 51...
 
[+]

Entropy:
6.3255

Code size:
909 KB (930,816 bytes)

The file AcroRd32.exe has been discovered within the following programs.

Adobe Creative Suite 5 Master Collection  by Adobe Systems Incorporated
Adobe Creative Suite (CS5) is a collection of graphic design, video editing, and web development applications made by Adobe Systems. The collection consists of Adobe's applications (Photoshop, Acrobat, InDesign), that are based on various technologies (PostScript, PDF, Flash).
www.adobe.com/go/support
1% remove it
Adobe Creative Suite 6 Master Collection  by Adobe Systems Incorporated
Adobe Creative Suite (CS6) is a collection of graphic design, video editing, and web development applications made by Adobe Systems. The collection consists of Adobe's applications (Photoshop, Acrobat, InDesign), that are based on various technologies (PostScript, PDF, Flash).
1% remove it
Adobe Illustrator CS6  by Adobe Systems Incorporated
Publisher's description - “Adobe Illustrator CS6 is the industry-standard vector graphics software, used worldwide by designers of all types who want to create digital graphics, illustrations, and typography for all kinds of media: print, web, interactive, video, and mobile.”
www.adobe.com/products/illustrator.html
7% remove it
Adobe Photoshop CS6  by Adobe Systems Incorporated
Adobe Photoshop CS6 is the industry-standard image editing software, used worldwide by professional photographers, amateur photographers, and designers who want to perfect their digital images.
www.adobe.com/go/ps_support
12% remove it
Adobe Reader XI  by Adobe Systems Incorporated
Adobe Acrobat and Adobe Reader XI are a set of applications designed to view, create, manipulate, print and manage files in Portable Document Format (PDF). Acrobat and Reader are widely used as a method of presenting information with a fixed layout similar to a paper publication.
www.adobe.com
3% remove it
 
Powered by Should I Remove It?

The file AcroRd32.exe has been seen being distributed by the following 11 URLs.

https://email16.secureserver.net/download.php?folder=INBOX&uid=796&aEmlPart=0&part=2&tnef_part=-1&filename=AcroRd32.exe&email_folder=INBOX

http://poczta.o2.pl/?cmd=getpart&link=BuOTQ1kUcwbTWlxzSAtPzbaNTOkf2OtLTPsMTOwhWaZjSMeP3OxPTPoPDNwOTO6hnYwjTMwazMoNjMJ83bwjTM6aDMVcjMJ8jNZjTMJ8DbadiMs8CMskwAikEAp9mcjXDZwOmLUeQZk

https://starapoczta.home.pl/.../show?a=2&action_save=1&folder_id=6316700&id=50692

temp:AcroRd32.exe

https://webmail.ig.com.br/?_task=mail&_uid=17912&_mbox=INBOX&_action=get&_part=2&_download=1