photoshop_13_ls4.exe

Adobe Extractor

Adobe Systems Incorporated

This is a setup program which is used to install the application. The file has been seen being downloaded from www.dropbox.com and multiple other hosts.
Publisher:
Adobe Systems Incorporated

Product:
Adobe Extractor

Version:
1.0.1.2

MD5:
a5f920fc30fcc86d678f7b7eaec7dac8

SHA-1:
f073ac19a152d60711715958baa740ff4fd72a3d

SHA-256:
cac678b9268ed9bf043fbee670be7fc08fcdcadba3cb431ad407cb2de5f821a3

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
12/25/2024 1:13:00 AM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
W32.HfsOval
1.3.0.4923

File size:
1.2 MB (1,222,812 bytes)

Product version:
1.01

Copyright:
Copyright(c) 2008 Adobe, Inc.; 7-ZIP DLL Copyright(c) 2008 Igor Pavlov

File type:
Executable application (Win32 EXE)

Language:
English (United States)

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:7t5AdY2Gjr9WHahI6Wl6S1j0E6+QeWfKAbVPdDOTmdl5ogadztqxh:LaYJ9uD6aj1L9QeWfKAbVPdDOTmdl5oi

Entry address:
0xA2318

Entry point:
55, 8B, EC, B9, 3D, 00, 00, 00, 6A, 00, 6A, 00, 49, 75, F9, 51, 53, 56, 57, B8, 48, 1F, 4A, 00, E8, 4B, 45, F6, FF, 33, C0, 55, 68, D4, 34, 4A, 00, 64, FF, 30, 64, 89, 20, B8, 00, 01, 00, 00, E8, 6B, 6F, FD, FF, A3, 10, 07, 4C, 00, A1, 10, 07, 4C, 00, 50, 68, FF, 00, 00, 00, E8, 52, 49, F6, FF, 8D, 55, E4, A1, 10, 07, 4C, 00, E8, 05, 71, FD, FF, 8B, 55, E4, A1, EC, 72, 4A, 00, E8, EC, 26, F6, FF, A1, 40, 6F, 4A, 00, 8B, 15, EC, 72, 4A, 00, 8B, 12, E8, DA, 26, F6, FF, E8, 0D, 08, F6, FF, A1, 40, 6F, 4A, 00...
 
[+]

Code size:
651.5 KB (667,136 bytes)

The file photoshop_13_ls4.exe has been seen being distributed by the following 4 URLs.

https://www.dropbox.com/sh/0xahpy0q1o5nvz2/PQRmbR8Rtx/Photoshop CS6 by Ukitaei/Photoshop CS6 by Ukitaei/.../Photoshop_13_LS4.exe

Scan photoshop_13_ls4.exe - Powered by Reason Core Security