home

abbyy_finereader_12_professional.exe

ABBYY Production LLC

This is a setup program which is used to install the application. The file has been seen being downloaded from dlp-ru.abbyy.com and multiple other hosts.
Publisher:
ABBYY Production LLC  (signed and verified)

MD5:
c1d368b45edafe9cd42565d0d1ec65dd

SHA-1:
166491d70f0982b9dc51ecfaa7e7e3c5906e6db8

SHA-256:
0a218eb007e92b1afb936b97354264a575717e00e045c1f21d456985dad3316e

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/7/2024 8:00:21 PM UTC  (today)

File size:
351.7 MB (368,775,088 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\programs\abbyy_finereader_12_professional.exe

Digital Signature
Signed by:
ABBYY Production LLC

Authority:
GlobalSign nv-sa

Valid from:
2/9/2016 4:09:36 PM

Valid to:
12/15/2018 8:34:53 PM

Subject:
CN=ABBYY Production LLC, O=ABBYY Production LLC, L=Moscow, S=Moscow, C=RU

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11212C98E1A8C8E56D31E636C37692F05E2C

File PE Metadata
Compilation timestamp:
6/9/2012 6:49:49 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6291456:am90yEpgOZxPfbvGNDRPxz/CMmK6UNylhQ1iQwydalcPq7NBpaXkdHtXfEPvdaRC:/9PEpgOZVeNltKMQUNyPmnwydal77hrY

Entry address:
0xAC87

Entry point:
E8, E3, FE, FF, FF, 33, C0, 50, 50, 50, 50, E8, 9F, 30, 00, 00, C3, 56, 57, 8B, 7C, 24, 0C, 8B, F1, 8B, CF, 89, 3E, E8, 8F, AB, FF, FF, 89, 46, 08, 89, 56, 0C, 8B, 87, 24, 0C, 00, 00, 89, 46, 10, 5F, 8B, C6, 5E, C2, 04, 00, 8B, C1, 8B, 08, 8B, 50, 10, 3B, 91, 24, 0C, 00, 00, 75, 0D, 6A, 00, FF, 70, 0C, FF, 70, 08, E8, 0E, B1, FF, FF, C3, 56, 8B, F1, 8B, 06, 85, C0, 74, 07, 50, FF, 15, C4, 40, 41, 00, 83, 26, 00, 83, 66, 08, 00, 83, 66, 0C, 00, 5E, C3, 56, 8B, F1, 80, 7E, 04, 00, 75, 34, 68, F4, 44, 41, 00...
 
[+]

Entropy:
7.9993  (probably packed)

Code size:
73 KB (74,752 bytes)

The file abbyy_finereader_12_professional.exe has been seen being distributed by the following 42 URLs.

http://dlp-ru.abbyy.com/?linkId=7cb8c1b9-f7ff-42c4-9cfc-88882410e696

https://www.google.com/url?hl=ru&q=http://.../?linkId=4a195223-9b67-4831-921d-edcf4e2defe9&source=gmail&ust=1479744725140000&usg=AFQjCNEsmi54qQkWivO5g2XU3WXIKDs3Wg

http://dlp-ru.abbyy.com/?linkId=8cd1951d-6201-43ce-aabd-a1177f745744

http://dlp-ru.abbyy.com/?linkId=8f06ddc1-5a0d-40a2-8117-f6b577872b10

http://dlp-ru.abbyy.com/?linkId=bcd8efbf-0b5a-4866-8513-efd8794dee79

http://dlp-ru.abbyy.com/?linkId=5a1dc6b2-0441-45e9-a924-f89b5b7e79aa

http://dlp-ru.abbyy.com/?linkId=62a42906-2aa1-4419-a8bc-a7fce1197e7d

http://dlp-ru.abbyy.com/?linkId=eddc7cd8-f664-468f-8b95-3e0968d1386f

https://www.google.com/url?hl=en&q=http://.../?linkId=4f1085fd-a7f8-4917-8855-faa195a77bfb&source=gmail&ust=1479357548116000&usg=AFQjCNHtWR4XjY-lfnIPoyge13WbMwxIDg

http://dlp-ru.abbyy.com/?linkId=89847230-1881-497f-bea4-1084439e797e

http://dlp-ru.abbyy.com/?linkId=cddcad25-e96c-416e-b750-db9740aa637a

https://www.google.com/url?hl=ru&q=http://.../?linkId=4c7e5c63-7294-4199-9136-763278660d4a&source=gmail&ust=1481395824894000&usg=AFQjCNFw0rd0FWdn_Z98n4nccn4FYu966Q

https://www.google.com/url?hl=es&q=http://.../?linkId=3e096636-04e7-4681-86e8-efc664ca2dbd&source=gmail&ust=1476206359483000&usg=AFQjCNHKbx7ZQ0lpCjLR0KvSLlLX1J67rw

https://www.google.com/url?hl=en&q=http://.../?linkId=47920ed5-c8dc-4cd1-b8c4-3e7855971e5d&source=gmail&ust=1480351062513000&usg=AFQjCNGSeaurm2jsWDZbxXVyvNNgt91HlQ

https://www.google.com/url?hl=en&q=http://.../?linkId=efe1a312-0b29-4b56-badb-141d8900f3ec&source=gmail&ust=1481544602301000&usg=AFQjCNHu1u6q2VPZqm6QFdg_TCAT04Kdug

http://dlp-ru.abbyy.com/?linkId=37f7896e-1712-41d2-81c6-cb0e0209b1cc

http://dlp-ru.abbyy.com/?linkId=178a94e1-f66f-42e8-a090-9f3861a94351

https://www.google.com/url?hl=en&q=http://.../?linkId=b8c5e89a-6e83-42cd-a49a-60d812108f0a&source=gmail&ust=1478756225476000&usg=AFQjCNHyDBnUBu0Igw4DcrrDVORT1qw-IA

http://dlp-ru.abbyy.com/?linkId=8d8e76a9-c76f-4836-9bae-2628a798aeaf

http://soft.mydiv.net/win/dlfile5d6ce_316978/.../ABBYY_FineReader_12_Professional.exe

http://dlp-ru.abbyy.com/?linkId=62c3a3ab-0327-4960-ad97-c990d2f6f53a

https://www.google.com/url?hl=pt-BR&q=http://.../?linkId=df540db2-fb45-41ff-9891-8b3d1e04942e&source=gmail&ust=1478198377497000&usg=AFQjCNE2MCFWnvh71bh1jftjmZkefcDU8w

https://www.google.com/url?hl=ru&q=http://.../?linkId=90ebb624-be07-4ae3-973e-eb4db67dc538&source=gmail&ust=1479592242695000&usg=AFQjCNEf8R_P1zYdJ_z02U-tGc3tnBIUSQ

http://dlp-ru.abbyy.com/?linkId=9a82350e-e1a6-4532-a616-38228ac9f1ea

https://www.google.com/url?hl=en&q=http://.../?linkId=72f165ba-8988-4b06-936f-5ecd24c24fc7&source=gmail&ust=1478866198352000&usg=AFQjCNEyWdlEpJV_BbsDj3gxdkoQurp0kQ

http://goo.gl/6oTJXo

https://www.google.com/url?hl=en&q=http://.../?linkId=63fc4a7d-92e2-41ac-9774-d3931623b8ac&source=gmail&ust=1478511938430000&usg=AFQjCNERQyNRNQUQm4F-b6j7JWO8ym6O-Q

https://www.google.com/url?hl=ru&q=http://.../?linkId=f6b1fce5-c6fe-401b-8c17-9fbbab7a105c&source=gmail&ust=1467204205661000&usg=AFQjCNHp0oL1feBDvXzftdRG-kgLSyCRxg

https://www.google.com/url?hl=en&q=http://.../?linkId=e557c319-7128-42ad-a6b5-92db1c867ef8&source=gmail&ust=1477462789731000&usg=AFQjCNGo6FKlqP93uALDuDo0XCpPzxpGKQ

https://mail.yandex.ru/re.jsx?uid=94885480&c=DARIA&cv=9.37.805&mid=159877786771658652&h=a,FVNW6txwprfXBZSSN0rq8Q&l=aHR0cDovL2RscC1ydS5hYmJ5eS5jb20vP2xpbmtJZD0zZTcxMTI3Yy1iOWQ3LTQwNTktOWU1NC1iMzlmODMyODQzMWU

Latest 30 of 42 download URLs

Scan abbyy_finereader_12_professional.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.