pdfxvwer.exe

PDF-XChange PDF Viewer

Tracker Software Products (Canada) Ltd

This is a setup and installation application. The file has been seen being downloaded from telechargement1.pcastuces.com and multiple other hosts.
Publisher:
Tracker Software Products Ltd   (signed by Tracker Software Products (Canada) Ltd)

Product:
PDF-XChange PDF Viewer

Description:
PDF-XChange PDF Viewer Setup

Version:
2.5.316.1

MD5:
74fe184eabe140d6267a63fe8198b371

SHA-1:
a3e87cb59710bf4665de98a2ca0ac825286d5e88

SHA-256:
193b0a33365ae1a684affaaac5a111513b381f0ed3891ecb716a573499d8585a

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 4:33:52 AM UTC  (today)

File size:
16.9 MB (17,765,360 bytes)

Product version:
2.5.316.1

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\low\content.ie5\{random}\pdfxvwer.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
9/8/2014 7:00:00 PM

Valid to:
9/8/2017 6:59:59 PM

Subject:
CN=Tracker Software Products (Canada) Ltd, O=Tracker Software Products (Canada) Ltd, STREET=9622 Chemainus Rd, L=Chemainus, S=BC, PostalCode=V0R 1K0, C=CA

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
0B6DE0A1B910529ED0179BEB38DC384C

File PE Metadata
Compilation timestamp:
1/15/2016 2:22:50 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
393216:OLkVgrMtjIBOG9ZOoFx7teLjaQSDExPdAGkGwhg3RafZ:OQmw+BOG9ZOoFxha0wdAGc

Entry address:
0x113BC

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, 34, 00, 41, 00, E8, E8, 51, FF, FF, 33, C0, 55, 68, 9E, 1A, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 5A, 1A, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, 5B, 41, 00, E8, 1E, D8, FF, FF, E8, 6D, D3, FF, FF, 80, 3D, DC, 2A, 41, 00, 00, 74, 0C, E8, 33, D9, FF, FF, 33, C0, E8, 80, 32, FF, FF, 8D, 55, EC, 33, C0, E8, E2, A3, FF, FF, 8B, 55, EC, B8, 54, 86...
 
[+]

Entropy:
7.9993

Developed / compiled with:
Microsoft Visual C++

Code size:
63.5 KB (65,024 bytes)

The file pdfxvwer.exe has been seen being distributed by the following 33 URLs.

http://telechargement1.pcastuces.com/temp6bs2/.../PDFXVwer.exe

http://telechargement1.pcastuces.com/temp6bs2/.../PDFXVwer.exe

http://cdn.soft-download.ru/?s=Emd2o8ztcGlv0vuFUALmIg&pf=PDF_XChange_Viewer_Rus_Setup.exe&pt=PDF-XChange Viewer ??? Windows&src=softcatalog.info

http://dw.cbsi.com/redir?ttag=visit_site_btn_click&lop=link&ptid=3000&pagetype=product_detail&astid=2&edid=3&siteid=4&destUrl=http://www.tracker-software.com/downloads/.../doc-management&topicbrcrm=&pid=14495032&mfgid=65666&merid=65666&ctype=dm&cval=NONE&ltype=dl_dlnow&spi=498aa18c16741eff7ad7769ebc21eebc&devicetype=desktop&pguid=aa0115eae46c86e482d5f9ad&viewguid=bdSDYfNjCb@xEOzRtmHRb9GX5xNKgpC6hdA4

http://lb.cdn.m6web.fr/d/c/a/bd02816a3b26921359ec3801d11a1597/56dc087b/soft/.../pdf-xchange-viewer_2-5-316-1_fr_76372.exe

https://download.heise.de/software/b045a5f4d680fcb7f463142c22af1ae2/56a6a1d9/.../pdfxvwer.exe

http://lb.cdn.m6web.fr/d/c/a/6c1d98fc47b5e279763096324553f438/56dacb0b/soft/.../pdf-xchange-viewer_2-5-316-1_fr_76372.exe

http://lb.cdn.m6web.fr/d/c/a/77c1decd07aeb750a9f7f2e7e0df9c9a/56dc891f/soft/.../pdf-xchange-viewer_2-5-316-1_fr_76372.exe

http://lb.cdn.m6web.fr/d/c/a/093313f416a1b8d0b3b80a98fb24cbf8/56ab65c2/soft/.../pdf-xchange-viewer_2-5-316-1_fr_76372.exe

http://dl.cdn.chip.de/downloads/.../PDFXVwer3161.exe

Latest 30 of 33 download URLs

Scan pdfxvwer.exe - Powered by Reason Core Security