» adobe updater.exe
Overview
Analysis
File Details

adobe updater.exe

Internet Expolrer

Microsof Сorporate

The executable adobe updater.exe has been detected as malware by 27 anti-virus scanners. This backdoor trojan may be used to conduct distributed denial of service attacks, or used to install additional trojans or other forms of malicious software as well as can steal your sensitive information.

File name:

adobe updater.exe

Publisher:

Microsof Сorporate

Product:

Internet Expolrer

Description:

IE Update

Version:

4.3.0.0

MD5:

e461e0f7226dad71602746a04da596d9

SHA-1:

0235b44bd4ec3b941c5c34c5664764c2eef8a06d

Scanner detections:

27 / 68

Status:

Malware

Analysis date:

4/25/2024 6:33:09 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.Generic.12217459

577

Agnitum Outpost

Trojan.Kryptik

7.1.1

Avira AntiVirus

BDS/Agent.90624.15

7.11.214.146

avast!

Win32:Malware-gen

2014.9-150707

AVG

BackDoor.Generic18

2016.0.3055

Baidu Antivirus

Trojan.MSIL.Zapchast

4.0.3.1577

Bitdefender

Trojan.Generic.12217459

1.0.20.940

Emsisoft Anti-Malware

Trojan.Generic.12217459

8.15.07.07.03

ESET NOD32

MSIL/Kryptik.APF (variant)

9.11283

Fortinet FortiGate

W32/Zapchast.APF!tr

7/7/2015

F-Secure

Trojan.Generic.12217459

11.2015-07-07_3

G Data

Trojan.Generic.12217459

15.7.25

IKARUS anti.virus

Trojan-Downloader.MSIL.Steamilik

t3scan.1.8.6.0

K7 AntiVirus

Trojan

13.200.15187

Kaspersky

Trojan.MSIL.Zapchast

14.0.0.1772

McAfee

RDN/Generic.bfr!hy

5600.6711

Microsoft Security Essentials

Backdoor:MSIL/Bladabindi.AJ

1.1.11400.0

MicroWorld eScan

Trojan.Generic.12217459

16.0.0.564

NANO AntiVirus

Trojan.Win32.Zapchast.djsfvh

0.30.0.296

nProtect

Trojan.Generic.12217459

15.03.06.01

Panda Antivirus

Trj/CI.A

15.07.07.03

Qihoo 360 Security

HEUR/QVM03.0.Malware.Gen

1.0.0.1015

Quick Heal

Trojan.MSI.r3

7.15.14.00

Sophos

Mal/Generic-S

4.98

Trend Micro House Call

TROJ_GEN.R03HC0CLV14

7.2.188

Trend Micro

TROJ_GEN.R03HC0CLV14

10.465.07

VIPRE Antivirus

Trojan.Win32.Generic

38198

File size:

88.5 KB (90,624 bytes)

Product version:

4.3.0.0

Original file name:

windows udpate.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\Documents and Settings\{user}\Local settings\temp\adobe updater.exe

File PE Metadata

Compilation timestamp:

11/25/2014 12:41:34 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

1536:UUWgzf00KtVTC55F0ncogfvvIOQBDLz7In9r2nXuSUt:Ut0Kts55FVvwOQBXPInkg

Entry address:

0x1485A

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

5.0553

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

74.5 KB (76,288 bytes)

Remove adobe updater.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.