install_flash_player.exe

Adobe Flash Player Installer/Uninstaller

Adobe Systems Incorporated

This is a setup and installation application. The file has been seen being downloaded from letoltes.szoftverbazis.hu and multiple other hosts.
Publisher:
Adobe Systems Incorporated  (signed and verified)

Product:
Adobe® Flash® Player Installer/Uninstaller

Description:
Adobe® Flash® Player Installer/Uninstaller 12.0 r0

Version:
12,0,0,43

MD5:
8a9eb1114f9fe238e81fef4bb10762d8

SHA-1:
5a68f7aa21c4217cf801a46616fe724d601f773a

SHA-256:
1d29c294aa0dd4b57d62efb06862d1711ea341af99c96597d71f9c9cc453791d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/2/2024 3:24:26 PM UTC  (today)

File size:
17.1 MB (17,888,136 bytes)

Product version:
12,0,0,43

Copyright:
Copyright © 1996 Adobe Systems Incorporated

Trademarks:
Adobe® Flash® Player

Original file name:
FlashUtil.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\adobe.flash.player.12.0.0.43.final.ouez.mazika2day.com\adobe.flash.player.12\adobe.flash.player.12.0.0.43.for.firefox.opera..etc\install_flash_player.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
2/24/2013 1:00:00 AM

Valid to:
2/26/2014 12:59:59 AM

Subject:
CN=Adobe Systems Incorporated, OU=Digital ID Class 3 - Microsoft Software Validation v2, OU=Flash Player - Fortnight, O=Adobe Systems Incorporated, L=San Jose, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2136329A167A6FD6BF4BB5E8778E0BFB

File PE Metadata
Compilation timestamp:
1/7/2014 6:37:16 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
393216:h28bVXtKQCX1jGj9PVgJmCOopFla7IiVAsT3IpEXQ6yy9:rIrjGUJmOUwsEeXQ6r9

Entry address:
0x1CC0C

Entry point:
E8, FB, 5B, 00, 00, E9, 78, FE, FF, FF, 8B, FF, 55, 8B, EC, 56, 8B, 75, 0C, F6, 46, 0C, 40, 57, 75, 79, 56, E8, 8D, 09, 00, 00, 59, BA, 98, 15, 43, 00, 83, F8, FF, 74, 1B, 83, F8, FE, 74, 16, 8B, C8, 83, E1, 1F, 8B, F8, C1, FF, 05, C1, E1, 06, 03, 0C, BD, 40, 2D, 43, 00, EB, 02, 8B, CA, F6, 41, 24, 7F, 75, 26, 83, F8, FF, 74, 19, 83, F8, FE, 74, 14, 8B, C8, 83, E0, 1F, C1, F9, 05, C1, E0, 06, 03, 04, 8D, 40, 2D, 43, 00, EB, 02, 8B, C2, F6, 40, 24, 80, 74, 1F, E8, 45, 17, 00, 00, 33, FF, 57, 57, 57, 57, 57...
 
[+]

Entropy:
7.9982  (probably packed)

Code size:
160 KB (163,840 bytes)

The file install_flash_player.exe has been discovered within the following program.

360Amigo is registry optimizer. 360Amigo System Speedup bundles a branded version of the Conduit Toolbar, designed to deliver search based advertising and results. During installation the user is presented in some cases with the option to install the toolbar (on by default).
www.360amigo.com
53% remove it
 
Powered by Should I Remove It?

The file install_flash_player.exe has been seen being distributed by the following 50 URLs.

http://letoltes.szoftverbazis.hu/wtl9v7VJbvBAHNn8ula4LQ/1480273534/.../install_flash_player_12_plugin.exe

http://www.filepuma.com/file/1390128218c5011/adobe_flash_player_non_ie_12.0.0.43/.../0/

http://letoltes.szoftverbazis.hu/psq7fP-vjuCPKDjLGqC2GQ/1483649376/.../install_flash_player_12_plugin.exe

http://letoltes.szoftverbazis.hu/l7T-lksqldm_sgSGYAYi0Q/1390997438/.../install_flash_player_12_plugin.exe

http://download.zattoo.com/zattoo-for-windows/.../install_flash_player_12_plugin.exe

http://www.adobe.com/.../acrobat_flashdownload_installer_win_es

http://letoltes.szoftverbazis.hu/0tAKl6FLCu6pzQbm8Mq0Hw/1428846095/.../install_flash_player_12_plugin.exe

http://letoltes.szoftverbazis.hu/jEEpYVSgmt2EoX8cNP1ueQ/1396633880/.../install_flash_player_12_plugin.exe

http://letoltes.szoftverbazis.hu/iLJ8LT8rxWKHbd6_tTpcew/1452258092/.../install_flash_player_12_plugin.exe

Latest 30 of 102 download URLs