home

adobe pdf reader.exe

WinSystem

NICE

The executable adobe pdf reader.exe has been detected as malware by 9 anti-virus scanners.
Publisher:
NICE

Product:
WinSystem

Version:
1.0.0.0

MD5:
ed691a5f93de71bfebea2f16f05a4869

SHA-1:
5e2ee7923a3554cdb54bcda61402dae08766b7d6

SHA-256:
6cc4aa089e3b807a061a9eceb7c06efaa6105197731f761b59eaf23fc3775f8a

Scanner detections:
9 / 68

Status:
Malware

Analysis date:
4/24/2024 5:55:46 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Agent.32768.1548
7.11.211.46

avast!
Win32:Malware-gen
2014.9-160201

Kaspersky
Trojan.MSIL.Agent
14.0.0.726

McAfee
Artemis!ED691A5F93DE
5600.6502

Panda Antivirus
Generic Suspicious
16.02.01.05

Qihoo 360 Security
Win32/Trojan.979
1.0.0.1015

Quick Heal
Trojan.MSI.r4
2.16.14.00

Sophos
Mal/Generic-S
4.98

Trend Micro House Call
TROJ_GEN.R08NH07BG15
7.2.32

File size:
32 KB (32,768 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © NICE 2013

Original file name:
WinSystem.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\roaming\microsoft\windows\start menu\programs\startup\adobe pdf reader.exe

File PE Metadata
Compilation timestamp:
12/31/2013 9:30:09 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
384:4Sls9ivKzWeOg9NL755KmdqkyQpPVhKDdc:44s9ivKAqxSsH

Entry address:
0x4F3E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
3.4391

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
12 KB (12,288 bytes)

User Start Menu Item
Name:
Adobe PDF Reader.exe


Remove adobe pdf reader.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.