home

AcroRd32.exe

Adobe Acrobat Reader DC

Adobe Systems, Incorporated

This is a setup program which is used to install the application. This is installed with multiple programs including Adobe Acrobat Reader DC - Português and Adobe Acrobat Reader DC. The file has been seen being downloaded from ud.interia.pl and multiple other hosts.
Publisher:
Adobe Systems Incorporated  (signed by Adobe Systems, Incorporated)

Product:
Adobe Acrobat Reader DC

Description:
Adobe Acrobat Reader DC

Version:
15.10.20056.167417

MD5:
178694d190eff02023118b33210e0adf

SHA-1:
a83cad4184401a820c4154690df0de8a7ad1f443

SHA-256:
cecdee8901eb4dff6b022cb74967eef822b0146027035716f104df4f2c7120fb

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 2:43:08 AM UTC  (today)

File size:
2 MB (2,141,880 bytes)

Product version:
15.10.20056.167417

Copyright:
Copyright 1984-2016 Adobe Systems Incorporated and its licensors. All rights reserved.

Original file name:
AcroRd32.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\adobe\acrobat reader dc\reader\acrord32.exe

Digital Signature
Signed by:
Adobe Systems, Incorporated

Authority:
Symantec Corporation

Valid from:
5/13/2015 9:00:00 PM

Valid to:
5/7/2017 8:59:59 PM

Subject:
CN="Adobe Systems, Incorporated", OU=Acrobat DC, O="Adobe Systems, Incorporated", L=San Jose, S=California, C=US, SERIALNUMBER=2748129, OID.2.5.4.15=Private Organization, OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US

Issuer:
CN=Symantec Class 3 Extended Validation Code Signing CA - G2, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
10FB713319027F3F1F1C0667B3C38CA9

File PE Metadata
Compilation timestamp:
12/18/2015 11:16:38 AM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
49152:ZytHv7Xl/Eno1336Dvk4jb4O8b8ITDnlQP1C2:2v7V/l33qv3Pv

Entry address:
0x12B7

Entry point:
E8, EE, 01, 00, 00, E9, 83, 4E, 0E, 00, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 55, 8B, EC, 6A, FE, 68, F0, 94, 54, 00, 68, 40, 5D, 4E, 00, 64, A1, 00, 00, 00, 00, 50, 83, EC, 5C, A1, 20, D6, 55, 00, 31, 45, F8, 33, C5, 89, 45, E4, 53, 56, 57, 50, 8D, 45, F0, 64, A3, 00, 00, 00, 00, 89, 65, E8, 8B, 4D, 08, 89, 4D, D4, 8B, 4D, 0C, 89, 4D, 98, 8B, 75, 14, 8B, 5D, 18, BF, 22, 00, 00, C0, 89, 7D, 9C, 85, F6, 74, 24, 8B, 46, 08, 85, C0, 74, 1D, 8B, 50, 04, 85, D2, 74, 16, 66, 83, 38, 08, 72...
 
[+]

Code size:
1.1 MB (1,135,616 bytes)

The file AcroRd32.exe has been discovered within the following programs.

Adobe Acrobat DC  by Adobe Systems Incorporated
www.adobe.com
4% remove it
Adobe Acrobat Reader DC  by Adobe Systems Incorporated
10% remove it
Adobe Acrobat Reader DC - Polish  by Adobe Systems Incorporated
7% remove it
Adobe Acrobat Reader DC - Português  by Adobe Systems Incorporated
9% remove it
Adobe After Effects CC 2015  by Adobe Systems Incorporated
12% remove it
Adobe Audition CC 2015  by Adobe Systems Incorporated
4% remove it
Adobe Media Encoder CC 2015  by Adobe Systems Incorporated
11% remove it
Adobe Photoshop CC 2015  by Adobe Systems Incorporated
www.adobe.com/go/ps_support
4% remove it
Adobe Premiere Pro CC 2015  by Adobe Systems Incorporated
6% remove it
Extended Asian Language font pack for Adobe Acrobat Reader DC  by Adobe Systems Incorporated
12% remove it
 
Latest 20 of 20 programs
Powered by Should I Remove It?

The file AcroRd32.exe has been seen being distributed by the following 34 URLs.

https://ud.interia.pl/.../getattach,mid,2091,mpid,11,uid,decd2fcbd6cdce30?f=AcroRd32.exe

https://dl-mail.ymail.com/ws/download/mailboxes/@.id==VjJ-_cblEaamnE-ACt9UgeEju5-d1jIpeyCDvUJ0aGDfwSuZkFxEBLrRyPJ3NP8CKlRZ/messages/@.id==AKp2imIABeFwVv4SdwE8aNJxp-o/content/parts/@.id==2/raw?appid=YahooMailNeo&ymreqid=3b38dca1-745a-91f7-01dc-060011010000&token=zitEzqOML3j84e6ealFTT5U7-km5qEQF52lp7AcCuBa7RVaCM0DO7t7G1fDGMWvR6F676llwJijNHGM9Rx73ng&error=https://us-mg5.mail.yahoo.com/.../iframemsg?id=28b8f1b7-d22f-137f-06f3-aed06eadc3d7

https://doc-0c-b8-docs.googleusercontent.com/docs/securesc/ailud0p4t4osmiu3327ajd34ifs54edl/58pcdvh6tvpcu38gakl6r482ui2vhcrg/1463515200000/.../04755053725495870670/0B7h9fxEcdc5qT2tUZ3FncnpWdVk?e=download

http://zalacznik.wp.pl/0/.../AcroRd32.exe

https://mg.mail.yahoo.com/.../download?m=YaDownload&mid=2_0_0_3_89401_ABdMyAoAABgwVqdL2AZJYAYvB5I&fid=Draft&pid=2&clean=0&appid=YahooMailNeo

https://dl-mail.ymail.com/ws/download/mailboxes/@.id==VjJ-Ht5PSFabfNdPvZAYu1oFIMhU62Gg_4grIeh7wPYnDZ2VvVWDI9nEGxoINKMtMnVF/messages/@.id==AJgJDNkAAgmmVs86MQtl-C-tHww/content/parts/@.id==2/raw?appid=YahooMailNeo&token=zitEzqOML3j84e6ealFTT5U7-km5qEQF52lp7AcCuBZ9tasfGCoLFzNmKFBqwRXtfuSv2dyYKMLOAEoHrmKWWA&error=https://fr-mg42.mail.yahoo.com/.../iframemsg?id=0ccdb0b1-be61-d2ae-f7f2-a3eda7a3fe55&ymreqid=e26e217d-8321-c4cb-0112-700052010000

https://dl-mail.ymail.com/ws/download/mailboxes/@.id==VjJ-GcQCwXIgFr4sCxxoVKYkEGFuDRoW2COPxNWAJFlIFFYvRz1bybwoK0oiJqjhO3yVyqtsdt-jko-uK0ko8KHOrw/messages/@.id==AEq_imIAABMMVsRgLAsQCLyLvOU/content/parts/@.id==2/raw?appid=YahooMailNeo&token=zitEzqOML3j84e6ealFTT5U7-km5qEQF52lp7AcCuBb2UQBumZNDoA8ZpLup9IvOQJKw7MSSwpgCcu3oh7cEKA&error=https://us-mg5.mail.yahoo.com/.../iframemsg?id=147bce5c-6ac6-d1d5-134a-cdea397aafe0&ymreqid=a112b644-9dde-f787-01b3-84001c010000

http://poczta.o2.pl/?cmd=getpart&link=BA1IwokTGNNT5wnGSAtPzbaNTOkO2OtLTPsMDORhWaZjSMeP3OxPTPsNDNsMjNRhnYwjjMoaTM6eDMJ83bwjjMAPTNodDMJ8jNZjTMJ8DbadiMs8CMskwAikEAp9mcjXDZwOmLUeQZk

https://email.seznam.cz/download/b/.../AcroRd32.exe

https://mail.inbox.lv/.../sent&index=67&array_index=0&id=2&part_id=2&actionID=download_attach&f=AcroRd32.exe&thumb=0&cache=584bef0d40cf437c6c7551480678bdff

http://mail.uol.com.br/attachment?msg_id=MTYyMDM&folder=DRAFT&disposition=attachment&ctype=AcroRd32.exe&&accountId=0

http://u.poczta.o2.pl/?cmd=getpart&link=uQurAUkUJVUTivV8SAtPzbaOTNVO2OtLTPsdzMRhWaZjSMeP3OxPTPsNDNsMjNRhnYwjjMoaTM6eDMJ83bwjjMAPTNodDMJ8jNZjTMJ8DbadiMs8CMskwAikEAp9mcjXDZwOmLUeQZk

https://dl-mail.ymail.com/ws/download/mailboxes/@.id==MTY1MTM5NzE5MiAxNDAxMTggMTQwMSBwb3N0bWFuMTVAc2JjZ2xvYmFsLm5ldA/messages/@.id==AEnuw0MAAEhFVqAHCA8LkIjDT1Y/content/parts/.../raw?appid=YahooMailNeo&token=nvXZRKZ5sFmu2CQDl1ogBWvFeWl79-AMXQY0NtI6aoWabiUa2G7E3zZhFvzERE_WRWg6tO_7An76O4MSd-gvwA&ymreqid=58fa1320-bfc3-11e5-c000-762be5badbf0

http://web-002.citromail.hu/provider/upload/tmp/.../AcroRd32.exe

https://dl-mail.ymail.com/ws/download/mailboxes/@.id==VjJ-B3nAh3em2cHcVLkHUTPtHonkuzSzJ3M4OYD1r1D7ykuXk0DaIKVZ5HxrE4jsVzNmROylUmfnLncun0Xy_otPlg/messages/@.id==AKBUfbwAA-cTVxFJ_gmweGLpoEQ/content/parts/@.id==6/raw?appid=YahooMailNeo&ymreqid=42e652a6-94ca-d5b9-0140-0a00a0010000&token=zitEzqOML3j84e6ealFTT5U7-km5qEQF52lp7AcCuBZzkzK0sSkLSmvpopZpg2JqNzgIx9Nw874sXMu334M_TRh-J5C6LyUnkpuuSevalNc&error=https://uk-mg42.mail.yahoo.com/.../iframemsg?id=e890d94c-3926-d6bb-d40c-5020ccce7c2b

https://dl-mail.ymail.com/ws/download/mailboxes/@.id==VjJ-TA0GELUYta9DTygD_8C6cUTLcjPMyDCErPEvk-BBq7qzSk9Axd2qgmaD82t40rJcGH4nkLovJSeSm65J69qU1w/messages/@.id==AIN2imIAABNiVvp-lgbKSGZeAhI/content/parts/@.id==2/raw?appid=YahooMailNeo&ymreqid=07ac7c36-b18f-d0ab-0190-150011010000&token=zitEzqOML3j84e6ealFTT5U7-km5qEQF52lp7AcCuBaUJuw-v114k4TBRN1qy159_tmbZU_QP6bd5QzJLzvu9w&error=https://es-mg5.mail.yahoo.com/.../iframemsg?id=e6b5214b-15fe-0ede-6b48-1db67631faa5

https://onedrive.live.com/download.aspx?cid=49E91A9FD51CC777&resid=49E91A9FD51CC777!234&canary=7r8XVRh7SDmVyzAQOOM8mN0rdTXig6SjCVTy51TG9KQ=6&ithint=.exe

http://www.flyforsinkelse.dk/uploads/authorization/document/.../AcroRd32.exe

https://dl-mail.ymail.com/ws/download/mailboxes/@.id==VjJ-oeHQDI_C9XZ7TF6wYTbxV4lrG2yHnYfl3nH_dzRM44I7lJay8QYm1UfmRAj2GTatPDbV6IA3dQQbp5FheM247g/messages/@.id==ACSvCmoAAF-WVxYiKAHUwPVL2kI/content/parts/@.id==2/raw?appid=YahooMailNeo&ymreqid=43122a14-cafa-4303-01ce-24000a010000&token=zitEzqOML3j84e6ealFTT5U7-km5qEQF52lp7AcCuBaW8uJYrzDAdH_Cs5zXl7gqgGrRY_fpNdypzfYcwpZxNA&error=https://mg.mail.yahoo.com/.../iframemsg?id=f9f4fa9a-19f5-6318-5efa-ff8ef31e1dda

https://ud.interia.pl/.../getattach,mid,35205,mpid,11,uid,af08b213c955c4ca?f=AcroRd32.exe

https://senaintro.blackboard.com/webapps/.../download?course_id=_1675385_1&attempt_id=_36348843_1&file_id=_87063909_1&fileName=AcroRd32.exe

https://dl-mail.ymail.com/ws/download/mailboxes/@.id==MTI0OTc0ODkwNjc1ODQwNjQ1IDE3MjY2MCAxNzI2IHZpc2lvbmJhdGltZW50QHlhaG9vLmNvbQ/messages/@.id==AKVUfbwAABsgVqlNOgVHkLSwxGY/content/parts/.../raw?appid=YahooMailNeo&token=L45hPcqIK1ndSoY3W2qdwqXBEgYQ1ZrCnasYKP7AcpCoO5n1f1eCBN3P2YsgetAIsTc93Q-HB4rtl9Lc01CVqg&ymreqid=1850e810-c54c-11e5-c000-8f3e653c37e9

https://onedrive.live.com/download.aspx?cid=D88CD6EA1A836312&resid=D88CD6EA1A836312!145&canary=gF5F0MvyEF3u1skyf5DOyXmelWRy5CVoPhWNdjeptos=1

https://dl-mail.ymail.com/ws/download/mailboxes/@.id==VjJ-rDYFBC3gZ0r8_hsTpbhtdDyhQCia2O11Co8QOBfuMsIS5gQwuTCOUEuGGUB5fibL/messages/@.id==AN0IDNkAACsaVvUvkAB5GNk_AM4/content/parts/@.id==2/raw?appid=YahooMailNeo&ymreqid=a678b57e-f5f3-cecb-01f1-03005f010000&token=zitEzqOML3j84e6ealFTT5U7-km5qEQF52lp7AcCuBbGOeQ0EA9Sz7w1E8aqGxWeov9QxKh5N8GHMGjtr85Eew&error=https://ro-mg42.mail.yahoo.com/.../iframemsg?id=8664cd3b-a146-ca42-7700-ef83e8b09d53

https://e.mail.ru/.../getattach?file=AcroRd32.exe&id=14555630220000000861;0;1&mode=attachment&notype=1&x-email=kupets94@mail.ru

https://ud.interia.pl/.../getattach,mid,35979,mpid,10,uid,82bedfd304382e51?f=AcroRd32.exe

https://webmail.reicaz.com/Session/1464686-yCFxF880EXmMWHynWL0e-kmbcpkn/MIME/Sent Items/.../AcroRd32.exe

http://zalacznik.wp.pl/0/.../AcroRd32.exe

https://mg.mail.yahoo.com/ya/.../2KWewxo&fid=Inbox&pid=2&clean=0&appid=YahooMailNeo&ymreqid=757d3223-c4f2-4f90-0106-b1033c010000

https://mg.mail.yahoo.com/.../download?m=YaDownload&mid=2_0_0_1_235609_AETuw0MAACifVscTDAzc AGWbfA&fid=Inbox&pid=2&clean=0&appid=YahooMailNeo&ymreqid=36a6f27e-747b-ffd1-019a-4e0013010000

Latest 30 of 34 download URLs

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.