foxit_reader_v6.2.1.0681.exe

Foxit Reader Setup

Foxit Corporation

This is a setup and installation application. The file has been seen being downloaded from storage.dobreprogramy.pl and multiple other hosts a known adware distribution point operated by dobreprogramy sp. z o.o..
Publisher:
Foxit Corporation   (signed by Foxit Corporation)

Product:
Foxit Reader Setup

Version:
6.2.1.618

MD5:
1f0b51a345dc7873b3e01ea4a69042d7

SHA-1:
001f85e24072990f1c3c3f38e6590c7a496d539b

SHA-256:
12a4729e18e46fbb01143f811bcf1fbe23cf377b2b635cc43362fe77f833f254

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 11:34:17 PM UTC  (a few moments ago)

File size:
35.7 MB (37,444,312 bytes)

Product version:
6.2.1.618

Copyright:
Copyright © 2004-2014 Foxit Corporation. All Rights Reserved.

File type:
Executable application (Win64 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\foxit_reader_v6.2.1.0681.exe

Digital Signature
Subject:
CN=Foxit Corporation, O=Foxit Corporation, L=Fremont, S=CA, C=US

Serial number:
04430E53296BF1

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
786432:u+TCC0qHNAHvzeDhdQQFk/YMaTMwl/gPeEBMe3ZYKkbzP+YU:/CC0qHNsMdpgYrloPnFk7U

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, 2C, 00, 41, 00, E8, E8, 51, FF, FF, 33, C0, 55, 68, 9E, 1A, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 5A, 1A, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, 5B, 41, 00, E8, 16, D8, FF, FF, E8, 65, D3, FF, FF, 80, 3D, DC, 2A, 41, 00, 00, 74, 0C, E8, 2B, D9, FF, FF, 33, C0, E8, 80, 32, FF, FF, 8D, 55, EC, 33, C0, E8, E2, A3, FF, FF, 8B, 55, EC, B8, 50, 86...
 
[+]

Developed / compiled with:
Microsoft Visual C++

The file foxit_reader_v6.2.1.0681.exe has been discovered within the following program.

360Amigo is registry optimizer. 360Amigo System Speedup bundles a branded version of the Conduit Toolbar, designed to deliver search based advertising and results. During installation the user is presented in some cases with the option to install the toolbar (on by default).
www.360amigo.com
53% remove it
 
Powered by Should I Remove It?

The file foxit_reader_v6.2.1.0681.exe has been seen being distributed by the following 45 URLs.

http://storage.dobreprogramy.pl/.../FoxitReader621.0618_enu_Setup.exe

http://file.storeglobal-best.com/tmp/cf/soft/2014/7/ba/.../foxit-reader_6210618.exe

http://installs.innovativesyst.com/.../FoxitReader621.0618.exe&u={3BB7BB29-A43E-42E1-A031-C3C795552DD4}

http://cdn01.foxitsoftware.com/.../1472557444

Latest 30 of 45 download URLs

Scan foxit_reader_v6.2.1.0681.exe - Powered by Reason Core Security