home

adobe_flash_setup.exe

This is a setup and installation application. The file has been seen being downloaded from update412.com.
MD5:
e50f0652fb1407d0aa102832e8047737

SHA-1:
06891618f7c06c7d49a4a8a92c2f29f78b075f90

SHA-256:
51ba23b756be15f94364f8aff04d630f8bece62b10a995b64f80cf59ec48c39d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/4/2024 5:12:41 PM UTC  (today)

File size:
762.4 KB (780,740 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\adobe_flash_setup.exe

File PE Metadata
Compilation timestamp:
6/19/1992 6:22:17 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:0avpRwJ8g/199VRJFrA1vJhm0/YQVLnK7EZ5BHq/dTJ4P3VkIXK9F:0avoKif9VfyU0/YQVLnKoqRJ4PlkhF

Entry address:
0x9C40

Entry point:
CE, 40, 00, B2, 01, B8, 78, 78, 40, 00, E8, 5D, DA, FF, FF, A3, 84, CE, 40, 00, 33, C0, 55, 68, 0A, A0, 40, 00, 64, FF, 30, 64, 89, 20, 8B, D3, A1, 30, CE, 40, 00, 8B, 48, 18, A1, 84, CE, 40, 00, E8, C6, DC, FF, FF, 33, C0, 5A, 59, 59, 64, 89, 10, 68, 11, A0, 40, 00, A1, 84, CE, 40, 00, E8, 1B, 89, FF, FF, C3, E9, ED, 8D, FF, FF, EB, EE, 33, C0, 5A, 59, 59, 64, 89, 10, EB, 1B, E9, AC, 8C, FF, FF, 01, 00, 00, 00, 80, 77, 40, 00, 2C, A0, 40, 00, E8, 6F, FA, FF, FF, E8, EE, 8E, FF, FF, 6A, 00, 8B, 1D, 80, CE...
 
[+]

Entropy:
7.8580  (probably packed)

Code size:
37 KB (37,888 bytes)

The file adobe_flash_setup.exe has been seen being distributed by the following URL.

http://update412.com/download.php?conversion_id=14139852344761&site_id=429&app_id=4&lp_id=107&v=ico&dist_id=231&channel=adc_flsept&c=ff7b6cc3e016c9bf813f09359f1137f3&pbsid=1413985234095_1413985207436_122_650_86513529_1&v_id=f0776459b47fc38a47ebd5f95ef4f9e5

Scan adobe_flash_setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.