home

adaware_installer.exe

This is a self-extracting archive and installer. The file has been seen being downloaded from download.instalki.org.
MD5:
0a20adb6cb6ab79ef6b7aee1d9d74815

SHA-1:
8d863dcb42379b4f951f4f2d651be017c2e9ad9d

SHA-256:
15384febfbf17e651ba9efdabb336906957a6964873efd8c483d96110fb46e60

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 1:25:29 AM UTC  (today)

File size:
1.9 MB (2,002,644 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\adaware_installer.exe

File PE Metadata
Compilation timestamp:
6/24/2015 5:51:50 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
24576:oo/z0qNBDHJGais6H/Ev9XFKjb0xUhZEMVLAbXu6KX0KB/rl5FaHvOgJp:DQQBHJGaisLtQjb0+FVL96C0KBvgJp

Entry address:
0x87153

Entry point:
47, 10, 66, 0F, 6F, CD, 66, 0F, 3A, 0F, EC, 0C, 66, 0F, 7F, 6F, 20, 8D, 7F, 30, 7D, B7, 8D, 76, 0C, E9, AF, 00, 00, 00, 66, 0F, 6F, 4E, F8, 8D, 76, F8, 8D, 49, 00, 66, 0F, 6F, 5E, 10, 83, E9, 30, 66, 0F, 6F, 46, 20, 66, 0F, 6F, 6E, 30, 8D, 76, 30, 83, F9, 30, 66, 0F, 6F, D3, 66, 0F, 3A, 0F, D9, 08, 66, 0F, 7F, 1F, 66, 0F, 6F, E0, 66, 0F, 3A, 0F, C2, 08, 66, 0F, 7F, 47, 10, 66, 0F, 6F, CD, 66, 0F, 3A, 0F, EC, 08, 66, 0F, 7F, 6F, 20, 8D, 7F, 30, 7D, B7, 8D, 76, 08, EB, 56, 66, 0F, 6F, 4E, FC, 8D, 76, FC, 8B...
 
[+]

Code size:
1.1 MB (1,187,840 bytes)

The file adaware_installer.exe has been seen being distributed by the following URL.

http://download.instalki.org/programy/Windows/Bezpieczenstwo/.../Adaware_Installer.exe

Scan adaware_installer.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.