» activator.exe
Overview
Analysis
File Details
Programs (1)
Downloads (18)

activator.exe

File name:

activator.exe

MD5:

319b20b6b786412acc84398a102a8d82

SHA-1:

904dc17a88f630b9a171626bed46c2878308994f

SHA-256:

2dc2580f65d3837f313b78d54e68a1523190193f9f5265550639b2bef4253b67

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

11/15/2024 10:25:45 PM UTC (today)

Scan engine

Detection

Engine version

Trend Micro House Call

TROJ_GEN.R0C1H09A915

7.2.166

File size:

113.9 KB (116,624 bytes)

File type:

Executable application (Win32 EXE)

File PE Metadata

Compilation timestamp:

6/26/2012 9:18:44 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

3072:Oekw6dAFBd9excKkMVyD5J/lI3WX5ATyUKDkEwo:OBwFFBd9exsDm3TTOD7

Entry address:

0x91DC

Entry point:

55, 8B, EC, 6A, FF, 68, 20, D3, 40, 00, 68, F8, BF, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, F8, D0, 40, 00, 33, D2, 8A, D4, 89, 15, 5C, 1A, 41, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, 58, 1A, 41, 00, C1, E1, 08, 03, CA, 89, 0D, 54, 1A, 41, 00, C1, E8, 10, A3, 50, 1A, 41, 00, 33, F6, 56, E8, 52, 0B, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, B0, 00, 00, 00, 59, 89, 75, FC, E8, F5, 2B, 00, 00, FF, 15, FC, D0, 40, 00, A3, 6C, 1F, 41, 00, E8... 
[+]

Entropy:

6.5315

Developed / compiled with:

Microsoft Visual C++ v6.0

Code size:

48 KB (49,152 bytes)

The file activator.exe has been discovered within the following program.

Foxit Advanced PDF Editor 3 by Foxit Corporation

Publisher's description - “Many times document authors need to do extensive editing directly to a PDF file. Whether you're editing paragraphs, font sizes, or more, the Foxit Advanced PDF Editor provides a word processor environment to editing PDF documents.”

www.foxitsoftware.com

21% remove it

The file activator.exe has been seen being distributed by the following 18 URLs.

http://s6038.chomikuj.pl/File.aspx?e=Dw0KIPdYpEacGkpkCBqHqsabpwK27y8TXj-8cy3C3NSb9gOD43FCn0dqsrfKYt-04HcMZeYMIFbabPFogAS2LJ-T4qdy1_ddppaq0kXOBo6u3MWpxoDn6pJOsMg1yzNna2y1rko50Ew_HfKNdBGnwg&pv=2

http://s6038.chomikuj.pl/File.aspx?e=Dw0KIPdYpEacGkpkCBqHqsabpwK27y8TXj-8cy3C3NT3G4IFLN9Lt8qUfpSgNcLvYuKFszWInFOCcd9knfVQpL_U6wLinRQei8jgRlgibaORo51UjTMhJopUfNamdOwxZLaRhhA9roDNeDrsl41oIw&pv=2

http://s6038.chomikuj.pl/File.aspx?e=Dw0KIPdYpEacGkpkCBqHqsabpwK27y8TXj-8cy3C3NTjXMEyiU_Ca2pG7nv7Bgn5c_cPK1k2EIH8CMpE_RyZtdwPDHKJF2rAFdrYpwyf0ZaW2mZiZsa3lnIuPfCueQj5k5KCp4Jowm3981fKWuwIsQ&pv=2

http://s6038.chomikuj.pl/File.aspx?e=Dw0KIPdYpEacGkpkCBqHqsabpwK27y8TXj-8cy3C3NRHED1IPdU8hEwB8Hw2DXbIPyIsc-kqJSvlG6m-VuKYp3D4qCpqoWWxv-66ikm9gVUQSkfnRTcVhO7IRVzDnT8cG5UiL1mXFkCMUIrCGTTivw&pv=2

http://s6038.chomikuj.pl/File.aspx?e=Dw0KIPdYpEacGkpkCBqHqsabpwK27y8TXj-8cy3C3NRV4UcD_flXaUwUWxm6KoEi7IRjwTnmXVBXKkQDr_C7LkPQ-0TDMIqqZMu_C0ao9mumxDxT7pQ6RNvHFwMp1WUAOxj1z-tUy5ZtSw1Sc0tMSw&pv=2

http://s6038.chomikuj.pl/File.aspx?e=Dw0KIPdYpEacGkpkCBqHqsabpwK27y8TXj-8cy3C3NTEAGljIJaPJWUkwCGmz5mVcJGEHYfI09i3ag5k2PIJLJKxLqpFig9tpMvZNrfEo7YB79biuV0aZUxZ_n3MeRJ5iGp1cbpA9ST3En2cu1vX_g&pv=2

http://s6038.chomikuj.pl/File.aspx?e=Dw0KIPdYpEacGkpkCBqHqsabpwK27y8TXj-8cy3C3NT2bVDhXYg65WLa_ZeU_fOj8qSPbw__ASoxVHj3BZNWEBw8WpBoHBTLdSTvYF51ZqllwE63px7txpOtZxMv-7QtQfpnHy8h0qNavdVwnKP84w&pv=2

http://s6038.chomikuj.pl/File.aspx?e=Dw0KIPdYpEacGkpkCBqHqsabpwK27y8TXj-8cy3C3NTsq7HMrx-734s9qD-kCcNYAuZ1gk1CjDiMhoH1Qezh9DEC8fyX6KtUZpsiXEITnpb7fZ_iAXciHw-xxFLF7EL4EvE54OcjL0D5gDN7z2ZS3g&pv=2

http://s6038.chomikuj.pl/File.aspx?e=Dw0KIPdYpEacGkpkCBqHqsabpwK27y8TXj-8cy3C3NTipyGJZ493fFNu2XVDSHVMja-8A0TMUuKy6uRTPO8aMazFtho5LbGMnsglTPST-1iANBIigqrq7O3nNU9F2iBLYxpcV4KMz-o-RytyoC2DSA&pv=2

http://s6038.chomikuj.pl/File.aspx?e=Dw0KIPdYpEacGkpkCBqHqsabpwK27y8TXj-8cy3C3NQx_rCl61AuQM6m8zWxPeQNQxP9qIZLjWZhIVkzopP3S0My4OB9xWMVry0ObDyz0GI-3Kbyl1VILJV5gcPMuiywdEtUKQZpg7b0HuJUjHk_FA&pv=2

http://s6038.chomikuj.pl/File.aspx?e=Dw0KIPdYpEacGkpkCBqHqsabpwK27y8TXj-8cy3C3NTJjRygcZmZ6j0FwUOYfkCp6oW_zV4vga0iH1G6d5QadKmVZfnSkjf12V9uoc5TJ7MHCfV24ch5ReVUZH04ck2RXSwhSVqzY5N5KipfN0c_-w&pv=2

http://s6038.chomikuj.pl/File.aspx?e=Dw0KIPdYpEacGkpkCBqHqsabpwK27y8TXj-8cy3C3NQRalqzU5b_VrLvIHAcCxi0OUj-Hp733LlbBPJt2rlvlrYdIUrUdq_X6TdaaiVgDhS547M1VUJXaOeTEqZm3pNjLJFgpkUjICXHmZTPul_hvg&pv=2

http://s6038.chomikuj.pl/File.aspx?e=Dw0KIPdYpEacGkpkCBqHqmHmt_ctE5ICQj4p6Z5H09Rnoc9QuiJQAId7tGh597pP05_hx0s632i9yNsttzqaSDitIoF8d6l_YV8_V2c3fJyh8j8gPXPnSy7tdZKnNwSxTGghxv80-HkUN2T9XDwxwg&pv=2

http://s6038.chomikuj.pl/File.aspx?e=Dw0KIPdYpEacGkpkCBqHqsabpwK27y8TXj-8cy3C3NRk0N5LB5rG_QwKG1X1NBEInZkhjS_zMrl4OAytJZ96hChlRXe4Vq4yHQc1hb4MwX91fiHyW1jySvLknfJkeQS1xdlXep1kRewueJvt6Vv5-A&pv=2

http://s6038.chomikuj.pl/File.aspx?e=Dw0KIPdYpEacGkpkCBqHqsabpwK27y8TXj-8cy3C3NR9xRskIg9DsFfPmH8Lo2dg3B_bRc-R8hWqIUenc5d2q9hRNxGQhjq-lfKp6cS9PViWyq8UP60-MM8XKt0w1Br1xJtDMOe29njB0mDaJfJR-g&pv=2

http://s6038.chomikuj.pl/File.aspx?e=Dw0KIPdYpEacGkpkCBqHqsabpwK27y8TXj-8cy3C3NQlRI534uzqepet9UAngfnGtwZT_gGiQMlQF-4vlvrxTYpswFMNHbp4rFIPI7TVe9sM63vqqMvWKtJ6Pfg1aNO00dzIj30MCjerKe0T6yD6hg&pv=2

http://s6038.chomikuj.pl/File.aspx?e=Dw0KIPdYpEacGkpkCBqHqsabpwK27y8TXj-8cy3C3NQWQTjXT5aMdAtRUoeJW46Ij_owfpY8EdufI-YadMpXhK-z1p0rhppyYtDacobaDQ1yupAYL6-w9IHKo2jMSIozPoWlVKDDiwCggJ0r7Zl4nA&pv=2

http://s6038.chomikuj.pl/File.aspx?e=Dw0KIPdYpEacGkpkCBqHqsabpwK27y8TXj-8cy3C3NT_fZdcMHzNQJ7fwF8TCdOBQvuDVzm_wZTF2VdShrF6HNzRMLdCKFfD9fS4KtM1VC-_4ANq33co2aR04NHXiKZMxPt8bzLX7DxQ3acAv4WGRQ&pv=2

Scan activator.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.