home

installax64.exe

Flash Player Installer/Uninstaller

Adobe Systems Incorporated

This is a self-extracting archive and installer. The file has been seen being downloaded from s6729.chomikuj.pl and multiple other hosts.
Publisher:
Adobe Systems, Inc.  (signed by Adobe Systems Incorporated)

Product:
Flash® Player Installer/Uninstaller

Description:
Adobe® Flash® Player Installer/Uninstaller 11.0 r1

Version:
11,0,1,152

MD5:
d72bb0d9c25863a51fb54fff38a1754c

SHA-1:
9d5194184f03c822920852dc4b2aa868db35f8bd

SHA-256:
3125d7c88ae5373ef3eac182e9704729a3c96b10e3095c7b58b82c3bcd7dfd52

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/27/2024 2:51:57 AM UTC  (today)

File size:
7.8 MB (8,188,064 bytes)

Product version:
11,0,1,152

Copyright:
Copyright © 1996-2011 Adobe, Inc.

Trademarks:
Adobe® Flash® Player

Original file name:
FlashUtil.exe

File type:
Executable application (Win64 EXE)

Language:
English (United States)

Common path:
C:\windows\temp\installax64.exe

Digital Signature
Signed by:
Adobe Systems Incorporated

Authority:
VeriSign, Inc.

Valid from:
12/15/2010 1:00:00 AM

Valid to:
12/15/2012 12:59:59 AM

Subject:
CN=Adobe Systems Incorporated, OU=Digital ID Class 3 - Microsoft Software Validation v2, OU=Information Systems, O=Adobe Systems Incorporated, L=San Jose, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
15E5AC0A487063718E39DA52301A0488

File PE Metadata
Compilation timestamp:
9/24/2011 1:27:33 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
196608:H9CKZZ4SLNmWmgZB9pJ650Wbf3uGqn8YqzY55rBiVstHheigMKFdEk:H9CKf4yUg7J65ZG8r4iwjgxgk

Entry address:
0x60A8

Entry point:
48, 83, EC, 28, 45, 33, C9, 45, 33, C0, 33, D2, 33, C9, E8, 61, FB, FF, FF, CC, 40, 53, 48, 83, EC, 20, 48, 8B, D9, FF, 15, B5, AF, 00, 00, 4C, 8B, C3, 48, 8B, C8, 33, D2, 48, 83, C4, 20, 5B, 48, FF, 25, 99, AF, 00, 00, CC, 40, 53, 48, 83, EC, 20, 48, 8B, D9, FF, 15, 91, AF, 00, 00, 4C, 8B, C3, 48, 8B, C8, 33, D2, 48, 83, C4, 20, 5B, 48, FF, 25, 85, AF, 00, 00, CC, 4D, 85, C0, 74, 15, 4C, 8B, C9, 4C, 2B, CA, 8A, 02, 41, 88, 04, 11, 48, FF, C2, 49, 83, E8, 01, 75, F1, 48, 8B, C1, C3, CC, CC, 48, 89, 7C, 24...
 
[+]

Code size:
60.5 KB (61,952 bytes)

The file installax64.exe has been seen being distributed by the following 5 URLs.

http://s6729.chomikuj.pl/File.aspx?e=ge3lsVPYaPDQxw6K3HQYMa0N0zNTkF12dRmt8sQqE34H9eHAF9zXJaywOrUvjT5amqtBvnlLe9bkzI9Tr-tokkaszr2MsgifKG-o0Z2ClpvNE9lBdsNJFgrAT0K3B-dWr5Y8FJK30EZ5EscJEPSUKq-QCDkPv_6lODmQwxT3lJPC4D2G64EOM_BNxdE7U0U-&pv=2

http://s6729.chomikuj.pl/File.aspx?e=ge3lsVPYaPDQxw6K3HQYMa0N0zNTkF12dRmt8sQqE377x_cnC0EdP-nKhmqxtYbrZi3nu8hfrUON-7oAxVSE05exeXfcJ6EkoymKRnJ81zTFeitOVaWzQuMwtyxcJqbvIw0UCfKJD14wcN1YKAcNH-V5WZMTlN6kDijsrZE8ekZr7eFoR5-bMWhCvCw5m2KD&pv=2

http://clip2net.com/clip/s/.../install_flash_player_11_active_x_64bit.exe

http://fpdownload.macromedia.com/pub/flashplayer/current/licensing/.../install_flash_player_11_active_x_64bit.exe

http://s2287.chomikuj.pl/File.aspx?e=ge3lsVPYaPDQxw6K3HQYMW9lPiAHTxX4TkBHadb2JIrNQZS41XZBZdRTYzOXe-b2NiwFt0zN3T-3H9VN5MzapQh12XA6vuYUlC14zTM6-DUiiOZXZ7-H6PiDOz8ybUCANmRwKvhO2XO5yIHUDqdFfR4HE9wHOPqvPJx_NaSsFJA-pSDHU3Y_N02DTiWN5XDJ&pv=2

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.