home

screenshotreader11.exe

ABBYY Production LLC

This is a setup program which is used to install the application. This is installed with ABBYY Screenshot Reader 11. The file has been seen being downloaded from store.abbyyeu.com and multiple other hosts.
Publisher:
ABBYY Production LLC  (signed and verified)

MD5:
6f5f47d7641f9236890f4f30c6d1d929

SHA-1:
64e2665c43651b309e67e47e600495dde5af3a25

SHA-256:
c5d1722c8e18a5eec7949bfcbbc066427c1aa877fa26b0de6d17087eee76aa15

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 10:18:22 PM UTC  (today)

File size:
240.7 MB (252,432,728 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\screenshotreader11.exe

Digital Signature
Signed by:
ABBYY Production LLC

Authority:
Entrust, Inc.

Valid from:
1/13/2014 4:45:55 AM

Valid to:
1/13/2016 3:00:24 PM

Subject:
CN=ABBYY Production LLC, O=ABBYY Production LLC, L=Moscow, C=RU

Issuer:
CN=Entrust Code Signing Certification Authority - L1D, OU="(c) 2009 Entrust, Inc.", OU=www.entrust.net/rpa is incorporated by reference, O="Entrust, Inc.", C=US

Serial number:
4C17678A

File PE Metadata
Compilation timestamp:
6/9/2012 8:19:49 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6291456:fHvS5tbia7Mq/QOvOuYvih9PTY+qKmpytxaE/4IZPI:fHarkq9vOjvL/Kmp/mw

Entry address:
0xAC87

Entry point:
E8, E3, FE, FF, FF, 33, C0, 50, 50, 50, 50, E8, 9F, 30, 00, 00, C3, 56, 57, 8B, 7C, 24, 0C, 8B, F1, 8B, CF, 89, 3E, E8, 8F, AB, FF, FF, 89, 46, 08, 89, 56, 0C, 8B, 87, 24, 0C, 00, 00, 89, 46, 10, 5F, 8B, C6, 5E, C2, 04, 00, 8B, C1, 8B, 08, 8B, 50, 10, 3B, 91, 24, 0C, 00, 00, 75, 0D, 6A, 00, FF, 70, 0C, FF, 70, 08, E8, 0E, B1, FF, FF, C3, 56, 8B, F1, 8B, 06, 85, C0, 74, 07, 50, FF, 15, C4, 40, 41, 00, 83, 26, 00, 83, 66, 08, 00, 83, 66, 0C, 00, 5E, C3, 56, 8B, F1, 80, 7E, 04, 00, 75, 34, 68, F4, 44, 41, 00...
 
[+]

Entropy:
7.9992  (probably packed)

Code size:
73 KB (74,752 bytes)

The file screenshotreader11.exe has been discovered within the following program.

ABBYY Screenshot Reader 11  by ABBYY Software House
www.abbyy.ru/screenshot_reader
About 1% of users remove it
 
Powered by Should I Remove It?

The file screenshotreader11.exe has been seen being distributed by the following 8 URLs.

https://store.abbyyeu.com/.../dlreg?t=99NLykTTOKLSQGsMgPU0&k=111282569

https://store.abbyyeu.com/.../dlreg?t=99FXdTSL59eKvTCxeN3K&k=111623738

http://telecharger.freedownloadmanager.org/Windows-PC/.../GRATUIT-11.0.250.html?ac548d9

http://abbyy-screenshot-reader.software.informer.com/.../

http://www.dpbolvw.net/click-2075874-10990899-1452506079000?url=http://download.abbyyeu.com/.../ABBYY_Screenshot_Reader_ESD.exe

https://store.abbyyeu.com/.../dlreg?t=99SNLUV9cqCqLRhyWc7o&k=111246476

https://store.abbyyeu.com/.../dlreg?t=99D2Wx4mSl1wFpfHWRYY&k=111096896

http://download.abbyyeu.com/.../ABBYY_Screenshot_Reader_ESD.exe

Scan screenshotreader11.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.