home

creativecloudset-up.exe

Creative Cloud

Adobe Systems Incorporated

This is a setup program which is used to install the application. The file has been seen being downloaded from prosperent.com and multiple other hosts.
Publisher:
Adobe Systems Incorporated

Product:
Creative Cloud

Description:
Creative Cloud Set-Up

Version:
3.4.3.189

MD5:
eab7383687597d79225c4c5f02c51211

SHA-1:
cea6713b67007479092e636a984993c17087b736

SHA-256:
d692d89ea2a2e9217df83facd27dd5037a984226c216c6c199ebfbbec3c7dd8b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 9:34:12 PM UTC  (today)

File size:
673.2 KB (689,344 bytes)

Product version:
3.4.3.189

Copyright:
Copyright 2013-2015 Adobe Systems Incorporated. All rights reserved.

Original file name:
Creative Cloud.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\creativecloudset-up.exe

File PE Metadata
Compilation timestamp:
12/15/2015 9:55:47 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
12288:4EP253kyJG6yxATj1HnS8vQQ1Rgxp26sOQCp2A+Hxl/n3fAHc5UTuiE:4myXyxATj5SeQQMxpXsxCIvxJvAHEpiE

Entry address:
0x1000

Entry point:
B8, 4C, 0E, 64, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, 30, BC, D8, B2, A1, F9, 89, 4E, B2, 7A, D9, AF, 9C, 4F, F8, F1, C2, F1, C3, D3, D9, 03, 0D, E6, B4, 01, 87, D4, 46, AB, BC, 64, D4, 82, 7E, 94, B3, 47, 38, 16, 34, 46, 63, 35, C0, 83, 86, B5, 65, 10, 6F, 02, 9C, D7, 10, C3, 87, BB, 7B, C5, 30, 72, AE, EA, FF, 2F, DE, DB, 9B, CC, E3, 80, EB, DD, 0F, BC, 86, 7D, 40, 7F, 69, D3, 1F, F1, F1, 0F, CA, 47, C0, 6E, 8D, 27, 4F...
 
[+]

Entropy:
7.9063

Packer / compiler:
PECompact v2

Code size:
1.2 MB (1,228,288 bytes)

The file creativecloudset-up.exe has been seen being distributed by the following 19 URLs.

http://prosperent.com/click/api/linkaffiliator/apikey/f928e235acf6289df17cd4f06ee3ea09/sid/5_de_49592x1346xnewDef/location/http://cheapito.com/url/https://ccmdls.adobe.com/AdobeProducts/PHSP/16/win64/.../CreativeCloudSet-Up.exe

http://prosperent.com/click/api/linkaffiliator/apikey/f928e235acf6289df17cd4f06ee3ea09/sid/5_63_49459x206xakam1/location/http://reprice.us/url/https://ccmdls.adobe.com/AdobeProducts/PHSP/16/win64/.../CreativeCloudSet-Up.exe

https://ccmdls.adobe.com/AdobeProducts/AEFT/13/win64/.../CreativeCloudSet-Up.exe

https://ccmdls.adobe.com/AdobeProducts/AUDT/6/win64/.../CreativeCloudSet-Up.exe

https://ccmdls.adobe.com/AdobeProducts/ILST/17/win32/.../CreativeCloudSet-Up.exe

https://ccmdls.adobe.com/AdobeProducts/PHSP/14/win32/.../CreativeCloudSet-Up.exe

https://ccmdls.adobe.com/AdobeProducts/PPRO/9/win64/.../CreativeCloudSet-Up.exe

https://ccmdls.adobe.com/AdobeProducts/AUDT/7/win64/.../CreativeCloudSet-Up.exe

https://ccmdls.adobe.com/AdobeProducts/IDSN/11/win64/.../CreativeCloudSet-Up.exe

https://ccmdls.adobe.com/AdobeProducts/AEFT/13_5/win64/.../CreativeCloudSet-Up.exe

https://ccmdls.adobe.com/AdobeProducts/ILST/19_2/win64/.../CreativeCloudSet-Up.exe

https://ccmdls.adobe.com/AdobeProducts/AUDT/8/win64/.../CreativeCloudSet-Up.exe

http://www.tkqlhce.com/click-2075874-10755851-1359042928000?url=https://ccmdls.adobe.com/AdobeProducts/PHSP/15/win32/.../CreativeCloudSet-Up.exe

https://ccmdls.adobe.com/AdobeProducts/PHSP/15/win64/.../CreativeCloudSet-Up.exe

https://ccmdls.adobe.com/AdobeProducts/LTRM/6/win64/.../CreativeCloudSet-Up.exe

https://ccmdls.adobe.com/AdobeProducts/DRWV/16/win64/.../CreativeCloudSet-Up.exe

https://ccmdls.adobe.com/AdobeProducts/KCCC/1/.../CreativeCloudSet-Up.exe

https://ccmdls.adobe.com/AdobeProducts/ILST/18/win64/.../CreativeCloudSet-Up.exe

https://ccmdls.adobe.com/AdobeProducts/PHSP/16/win64/.../CreativeCloudSet-Up.exe

Scan creativecloudset-up.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.