home

1214_5.exe

ABBYY Production LLC

This is a setup program which is used to install the application. This is installed with ABBYY FineReader 12 Professional. The file has been seen being downloaded from downloader.disk.yandex.com and multiple other hosts.
Publisher:
ABBYY Production LLC  (signed and verified)

MD5:
646818b3ee391ec3b9c75d5102c1f1b9

SHA-1:
9d8e1b771081ecdcc8e4fc77135043d03f1c794b

SHA-256:
147edb7b353a0238b5579db882daac86c6c90557f6876ef402cd826f9210e838

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 11:51:09 PM UTC  (a few moments ago)

File size:
351.4 MB (368,459,224 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\1214_5.exe

Digital Signature
Signed by:
ABBYY Production LLC

Authority:
Entrust, Inc.

Valid from:
1/13/2014 11:53:27 AM

Valid to:
1/13/2016 11:40:31 PM

Subject:
CN=ABBYY Production LLC, O=ABBYY Production LLC, L=Moscow, C=RU

Issuer:
CN=Entrust Code Signing Certification Authority - L1D, OU="(c) 2009 Entrust, Inc.", OU=www.entrust.net/rpa is incorporated by reference, O="Entrust, Inc.", C=US

Serial number:
4C17678C

File PE Metadata
Compilation timestamp:
6/9/2012 3:19:49 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6291456:G5yHsvDkQskSH4S0ArA+s1ihwy/llGq7NNpaXeU+hhc9JJ4aTUgr9PTYWqKmpytk:G5yHsLskS90/+aiwy/lJ7Foqm9LS3Km7

Entry address:
0xAC87

Entry point:
E8, E3, FE, FF, FF, 33, C0, 50, 50, 50, 50, E8, 9F, 30, 00, 00, C3, 56, 57, 8B, 7C, 24, 0C, 8B, F1, 8B, CF, 89, 3E, E8, 8F, AB, FF, FF, 89, 46, 08, 89, 56, 0C, 8B, 87, 24, 0C, 00, 00, 89, 46, 10, 5F, 8B, C6, 5E, C2, 04, 00, 8B, C1, 8B, 08, 8B, 50, 10, 3B, 91, 24, 0C, 00, 00, 75, 0D, 6A, 00, FF, 70, 0C, FF, 70, 08, E8, 0E, B1, FF, FF, C3, 56, 8B, F1, 8B, 06, 85, C0, 74, 07, 50, FF, 15, C4, 40, 41, 00, 83, 26, 00, 83, 66, 08, 00, 83, 66, 0C, 00, 5E, C3, 56, 8B, F1, 80, 7E, 04, 00, 75, 34, 68, F4, 44, 41, 00...
 
[+]

Code size:
73 KB (74,752 bytes)

The file 1214_5.exe has been discovered within the following program.

ABBYY FineReader 12 Professional  by ABBYY Software House
Publisher's description - “ABBYY FineReader® 12 Professional OCR accurately converts paper and image documents into editable formats including Microsoft Office and searchable PDF – enabling you to reuse their content, archive them more efficiently and retrieve more quickly.”
finereader.abbyy.com/professional
About 9% of users remove it
 
Powered by Should I Remove It?

The file 1214_5.exe has been seen being distributed by the following 30 URLs.

https://downloader.disk.yandex.com/disk/f9287432f4c19a6c6759f97c5db2846f23677722f78a41f07dc0d719f4148262/589f1f71/.../x-msdownload&fsize=368459224&hid=2aa68af457d05df61bc394a8255b8dc2&media_type=executable&tknv=v2&etag=646818b3ee391ec3b9c75d5102c1f1b9

http://download1652.mediafire.com/yar786c2lbpg/.../ABBYY_FineReader_12_Professional.exe

http://scdn.freeversions.ru/4.html?sect=1446149566&parameter=ABBYYFineReaderProfessionalEdition_Trial_Rus_Setup.exe&secl=YT3c9_cxj05kE5bugi1eBA&clr=1

http://soft.sibnet.ru/.../?id=31446

http://fcdn.softcdn.ru/4.html?sect=1474851351&parameter=ABBYYFineReaderProfessionalEdition_Trial_Rus_Setup.exe&secl=7wjYgWiGjRog90hb6kPgwA&clr=1

http://inside.abbyyusa.com/e1t/c/*W1c2yJt3XPddTVryBf04Js7qB0/*W8gBVxM4GHzdWW7QRR8q52rQ8y0/.../f18dQhb0SbTP8YHtsdW8yLFC94mQf6dW4Xr1384WzxW6W3hHh8D2P7_nXVbxYmW8pCQ6vW50Vm495sjVq5W4rbdVh1xqBXLW96Ls8k3KlpzXW50Cxsv3SKjpsVbpTch4WYzsTN8RPZVGPMcrBW1nrCGw96zRPSW6bT6L38RzZSQW96LgbN5DQqTKW1bbTx45rC5Q6W81MffF7sLps-W49WVtr3VVg3wW5VXTSh4Zh8Y-W57-WqM3H_PtyW2DzCtR1yBHhkW8jdzqR6WT0QSW7qjKtT1SMZzrW5ydFbs6zs5QkW7Lhdg06JcNqCW2CwN2c5m1r4QW5nPxBK8gHsNrW4nyGfN55R-m1W6WfT5-1b1CJbW85912b9lNDL1W3cfNvw1zMcBDW7C_y5876MVM0N35rWh1s5PmlW6_v00H1hRpMQW2sP3C-78Drz8M6Q977vBzzHW3kYc044p7yDTW2BPM9G3KyQYpMMf1nmSH-clV7DVm15gdWnMW1tdwv061lPZvW24ZbSd6D_sQcN4wl5s-cgQY5W7XVYzb6k_cCgW8D1bN52h7_xdW2xvkS03Gk2R80

http://vsofte-file.ru/ABBYYFineReaderProfessionalEdition_Trial_Rus_Setup.exe

http://scanstore.s3.amazonaws.com/.../fr12pro_1214_5.exe

http://files.freesoft.ru/rep/.../ABBYY_FineReader_12_Professional.exe

http://vsofte-download.ru/ABBYYFineReaderProfessionalEdition_Trial_Rus_Setup.exe

https://store.abbyyeu.com/.../dlreg?t=99g7RMJQmvnG8yECt88R&k=109586840

https://store.abbyyeu.com/cgi-bin/.../ABBYY_FR12_PRO_ESD.exe

http://download.freeversions.ru/ABBYYFineReaderProfessionalEdition_Trial_Rus_Setup.exe

http://data.sw.cz/sw/extranet/.../FR12_Prof_1214_5.exe

http://files.downloadnow.com/s/software/13/59/67/.../ABBYY_FineReader_12_Professional.exe

https://downloader.disk.yandex.ru/disk/2c0aff96c4e32227b86852563e7ba1664ccf6e3cdefa83f11934eea547223473/56b8ec63/.../x-msdownload&fsize=368459224&hid=2aa68af457d05df61bc394a8255b8dc2&media_type=executable&tknv=v2&etag=646818b3ee391ec3b9c75d5102c1f1b9

http://s6989.chomikuj.pl/File.aspx?e=XH4aB1IlehA4p4vlxHZbJ0w5a9ZwCwUN1ZjDji518U4u8nuTZyBYDK_PoZ_GlxigNmT5YLc-UyVO5fPVXrzfXjcW-DLY075BEs5Zj4kc0ezNZ0DBwIBRS53lqwbMZY1QnjylQWcddFDbIalZ3O30IktZz-hBpQ3EIzEePRgLp84&pv=2

http://software-files-a.cnet.com/s/software/13/59/67/.../ABBYY_FineReader_12_Professional.exe

http://scdn.softfiles.ru/rozu2.html?sect=1455218726&parameter=ABBYYFineReaderProfessionalEdition_Trial_Rus_Setup.exe&secl=Ym3BIWj5lPwjoR5kQWa_KQ&clr=1

http://www.abbyydownloads.com/.../fr12pro_1214_5.exe

http://r2.computerbild.de/exec/r2r.pl?m=w-cobi;u=http://d.computerbild.de/downloads/.../ABBYY_FR12_PRO_TRIAL.exe

https://dl-web.dropbox.com/.../fr12pro_1214_5.exe

http://dlp-ru.abbyy.com/?linkId=cbb3b755-b7b7-4dfb-82fb-cd16dfbd63c2

https://store.abbyyeu.com/.../dlreg?t=99IJL8sMkpKsZNb7QHba&k=109607021

http://download.abbyyeu.com/.../ABBYY_FR12_PRO_TRIAL.exe

https://store.abbyyeu.com/.../dlreg?t=99rztS8HsE99ABtYOnsH&k=109829537

http://cdn.avangate.com/software/7/7748/ce3a2898d0340543029b0e32235132d2/.../fr12pro_1214_5.exe

https://software.avangate.com/?auth=qXrulKiEhbecd7O/db 1lriVuaO3vLGRjGx4vYPfpJOelrWMg8Crl7 /.../Wy6yjeWWZc2nLloWfjqqjmb3kmMC1mruGv6KnzJaIh3aHhaDQmHOlr9WEpqbcYrnDdZ6Eiw==

https://shop.abbyyusa.com/order/servant.php?sid=2Xrl83KaqaSNsoGmfc/.../BlbQ==

http://dl2.abbyy.com/.../ABBYY_FineReader_12_Professional.exe

Latest 30 of 30 download URLs

Scan 1214_5.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.