foxitreader620.0429_enu_setup.exe

Foxit Reader Setup

Foxit Corporation

This is a setup and installation application. The file has been seen being downloaded from www.foxitsoftware.com and multiple other hosts.
Publisher:
Foxit Corporation   (signed by Foxit Corporation)

Product:
Foxit Reader Setup

Version:
6.2.0.429

MD5:
d52c177c4e85a4104093e9b1a044c62c

SHA-1:
6d0a8877cd82c957f50b05fa7b4b2cb0b34a5cc8

SHA-256:
cd44c4ed94a92d2de9863b177c77aa0a9e71c9aa20060f6d5e9d8006b80be490

Scanner detections:
2 / 68

Status:
Inconclusive  (probably just false positive detections)

Analysis date:
12/25/2024 1:37:54 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/OpenCandy (variant)
8.9756

Reason Heuristics
PUP.OpenCandy.Installer (L)
16.11.29.21

File size:
37.4 MB (39,187,992 bytes)

Product version:
6.2.0.429

Copyright:
Copyright © 2004-2014 Foxit Corporation. All Rights Reserved.

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\foxitreader620.0429_enu_setup.exe

Digital Signature
Authority:
Starfield Technologies, Inc.

Valid from:
5/3/2013 9:56:10 AM

Valid to:
5/3/2016 10:33:52 PM

Subject:
CN=Foxit Corporation, O=Foxit Corporation, L=Fremont, S=CA, C=US

Issuer:
SERIALNUMBER=10688435, CN=Starfield Secure Certification Authority, OU=http://certificates.starfieldtech.com/repository, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
04430E53296BF1

File PE Metadata
Compilation timestamp:
10/13/2013 10:19:32 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
786432:wfXVbJqYP7E0ivIne7k6qO/jNm7GJ8qZVsuHhMugN3Gwv/a+bf:w/jqRZvIeTnjaGhHhMugNZvSQ

Entry address:
0x113BC

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, 2C, 00, 41, 00, E8, E8, 51, FF, FF, 33, C0, 55, 68, 9E, 1A, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 5A, 1A, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, 5B, 41, 00, E8, 16, D8, FF, FF, E8, 65, D3, FF, FF, 80, 3D, DC, 2A, 41, 00, 00, 74, 0C, E8, 2B, D9, FF, FF, 33, C0, E8, 80, 32, FF, FF, 8D, 55, EC, 33, C0, E8, E2, A3, FF, FF, 8B, 55, EC, B8, 50, 86...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
63.5 KB (65,024 bytes)

The file foxitreader620.0429_enu_setup.exe has been discovered within the following program.

360Amigo is registry optimizer. 360Amigo System Speedup bundles a branded version of the Conduit Toolbar, designed to deliver search based advertising and results. During installation the user is presented in some cases with the option to install the toolbar (on by default).
www.360amigo.com
53% remove it
 
Powered by Should I Remove It?

The file foxitreader620.0429_enu_setup.exe has been seen being distributed by the following 43 URLs.

Latest 30 of 43 download URLs

Scan foxitreader620.0429_enu_setup.exe - Powered by Reason Core Security