» install_flashplayer11x32au_mssd_aaa_aih.exe
Overview
Analysis
File Details
Programs (1)
Downloads (12)

install_flashplayer11x32au_mssd_aaa_aih.exe

Adobe Flash Player Installer

Adobe Systems Incorporated

This is a self-extracting archive and installer. This is installed with Adobe Reader XI (11.0.04). The file has been seen being downloaded from aihdownload.adobe.com and multiple other hosts.

File name:

install_flashplayer11x32au_mssd_aaa_aih.exe

Publisher:

Solid State Networks (signed by Adobe Systems Incorporated)

Product:

Adobe Flash Player Installer

Version:

3.3.9.0

MD5:

cd016b15d57e5b7eff153ad963dddfa4

SHA-1:

c0e2b8a3f47edade54646866fea949d39a014f63

SHA-256:

23e23d3d9f0809534c4af74c023e372fb0399fea6a6d132de616b0a8f07f33b6

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/23/2024 7:19:39 PM UTC (today)

File size:

1 MB (1,071,224 bytes)

Product version:

3.3.9.0

Original file name:

host.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\appdata\local\temp\install_flashplayer11x32au_mssd_aaa_aih.exe

Digital Signature

Signed by:

Adobe Systems Incorporated

Authority:

Symantec Corporation

Valid from:

7/29/2013 7:00:00 PM

Valid to:

7/25/2015 6:59:59 PM

Subject:

CN=Adobe Systems Incorporated, OU=CS Production, O=Adobe Systems Incorporated, L=San Jose, S=California, C=US, SERIALNUMBER=2748129, OID.2.5.4.15=Private Organization, OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US

Issuer:

CN=Symantec Class 3 Extended Validation Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:

4272E5D73E43628B1CF3F7F2D5F54BAD

File PE Metadata

Compilation timestamp:

6/24/2013 2:22:53 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

24576:bdSA+DTHZ+qh5IqqHf4zAr5J5JjSevVPQmIgNjikKrHJQH44sDuaY:bdSP5+qh5JqHf4C5J5JmeZQmIgZia6U

Entry address:

0x73050

Entry point:

60, BE, 00, 60, 44, 00, 8D, BE, 00, B0, FB, FF, 57, EB, 0B, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 75, D1, F8, 89, C5, EB, 0B, 01, DB, 75, 07, 8B... 
[+]

Entropy:

7.9786

Packer / compiler:

UPX v0.89.6 - v1.02 / v1.05 -v1.24

Code size:

184 KB (188,416 bytes)

The file install_flashplayer11x32au_mssd_aaa_aih.exe has been discovered within the following program.

Adobe Reader XI (11.0.04) by Adobe Systems Incorporated

Publisher's description - “Adobe Reader software is the free trusted standard for reliably viewing, printing, and annotating PDF documents. It’s the only PDF file viewer that can open and interact with all types of PDF content, including forms and multimedia.”

www.adobe.com

10% remove it

The file install_flashplayer11x32au_mssd_aaa_aih.exe has been seen being distributed by the following 12 URLs.

http://aihdownload.adobe.com/bin/.../install_flashplayer11x32au_chrd_awa_aih.exe

http://aihdownload.adobe.com/bin/.../install_flashplayer11x32au_chra_awf_aih.exe

http://aihdownload.adobe.com/bin/.../install_flashplayer11x32au_gtba_chra_dy_aaa_aih.exe

http://aihdownload.adobe.com/bin/.../install_flashplayer11x32au_mssd_aih.exe

http://aihdownload.adobe.com/bin/.../install_flashplayer11x32au_mssa_awc_aih.exe

http://aihdownload.adobe.com/bin/.../install_flashplayer11x32au_ltr5x32d_awc_aih.exe

http://aihdownload.adobe.com/bin/.../install_flashplayer11x32au_mssd_aws_aih.exe

http://aihdownload.adobe.com/bin/.../install_flashplayer11x32au_mssd_awc_aih.exe

http://aihdownload.adobe.com/bin/.../install_flashplayer11x32au_ltr5x64a_awc_aih.exe

http://aihdownload.adobe.com/bin/.../install_flashplayer11x32au_mssa_aaa_aih.exe

http://aihdownload.adobe.com/bin/.../install_flashplayer11x32au_ltr5x64d_awc_aih.exe

http://aihdownload.adobe.com/bin/.../install_flashplayer11x32au_mssd_aaa_aih.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.