home

setup.exe

Adobe Photoshop CS6

Adobe Systems, Inc.

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from docs.google.com and multiple other hosts.
Publisher:
Adobe Systems, Inc.

Product:
Adobe Photoshop CS6

Description:
Adobe Photoshop CS6 Setup

Version:
13.0.1.2

MD5:
02dde17be4c7a3dce827d28df8117e3c

SHA-1:
2098d73511a1daac926645cad8a7b5fec6cf7f47

SHA-256:
e071f7aff74e187f07a9f1ee88eeac9be728447aad359a0cda32fe7b62228bec

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 11:10:39 PM UTC  (a few moments ago)

File size:
73.7 MB (77,324,608 bytes)

Product version:
13.0.1

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\setup.exe

File PE Metadata
Compilation timestamp:
6/19/1992 11:22:17 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
1572864:wKT3GWkokgm1Pia0dgTqHXwTvQ6GH0FBEJNJ5TOLOx7fSTtjIvmExf:wKTWWMia0mDAUrEzvOG6T2e+f

Entry address:
0xA5F8

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, CE, 8A, FF, FF, E8, D5, 9C, FF, FF, E8, 64, 9F, FF, FF, E8, 07, A0, FF, FF, E8, A6, BF, FF, FF, E8, 11, E9, FF, FF, E8, 78, EA, FF, FF, 33, C0, 55, 68, C9, AC, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 92, AC, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 26, F5, FF, FF, E8, 11, F1, FF, FF, 80, 3D, 34, B2, 40, 00, 00, 74, 0C, E8, 23, F6, FF, FF, 33, C0, E8, C4, 97, FF, FF, 8D, 55, F0, 33, C0, E8, B6, C5, FF, FF, 8B, 55...
 
[+]

Entropy:
8.0000

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
39.5 KB (40,448 bytes)

The file setup.exe has been seen being distributed by the following 50 URLs.

https://docs.google.com/uc?export=download&confirm=IlgW&id=0B-UWHItHGwyMV1Yta19NeXhmaE0

http://download1756.mediafire.com/bpw4txvma7qg/.../setup.exe

chrome-extension://bigefpfhnfcobdlfbedofhhaibnlghod/persistent/.../Np5XjCpA

https://doc-04-3g-docs.googleusercontent.com/docs/securesc/l9ht1qt3qolvec2a6jbtv9aq57qqjv3j/7h1uj3qjhu3ssif1l3jfive2i0h29fjl/1483200000000/12466221816012386603/.../0B8EWY_4pv00WYUlTNFlGem05T00?e=download

https://docs.google.com/uc?export=download&confirm=aJRV&id=0B9mxF6PmlJpVdnFTc2E5YXVmTFU

http://76y1ct60ef.downwithloadsoftquicknow.com/1461949402bkJtdnNtdUImQG9scCpAa0I M3NuLEAjXiEjISFCLzVzbiw1c24vcHN2b3hrd28sY280NXo=

https://docs.google.com/uc?export=download&confirm=K9n-&id=0BxORCTq8KcxselI2a2Q0U3BpaW8

blob:ACED340F-BB24-44E1-BA80-CEDB3A9BCBC7

https://doc-0c-1c-docs.googleusercontent.com/docs/securesc/daia2gger7fpfcm66tr4k6h7d0sljf9f/invrbc5ujjnpgt924pbg0ar9p2bo1m11/1469570400000/02609222917979922627/.../0BzVc6byoLu4penFxc3lWWG91SEk?e=download

https://mega.nz/temporary/.../tIUSSBjT

https://doc-00-9c-docs.googleusercontent.com/docs/securesc/b17j64ahdic3lp2fj13so64crnk1tp36/nvgt32uggn7ip5daajog6stsillsk56k/1477605600000/03658170127909851349/.../0B9CXPhqyFvZKMzl1aUpfMmdQajQ?h=01007290377888656587&e=download

http://www83.zippyshare.com/d/pi5DvEXX/.../setup.exe

https://mega.nz/temporary/.../rARVkTbQ

https://docs.google.com/uc?export=download&confirm=moOc&id=0ByUounF9gQC4S21CWF9ONUtkZUk

https://mega.nz/persistent/.../OdZRVITb

http://orbitum.com/setup.php

https://mega.nz/temporary/.../XFNWzZJL

http://www83.zippyshare.com/d/pi5DvEXX/.../setup.exe

http://www.fraps.com/.../setup.exe

blob:96E8B6B2-F114-402A-A5FB-2B6ED516EF28

https://download.wetransfer.com/eu2/.../setup.exe

http://www83.zippyshare.com/d/pi5DvEXX/.../setup.exe

https://mega.nz/persistent/.../sh521bwK

https://mega.nz/temporary/.../YU0W2IRL

https://docs.google.com/uc?export=download&confirm=wnGJ&id=0B-UWHItHGwyMV1Yta19NeXhmaE0

https://mega.nz/persistent/.../K8IAGQRD

https://docs.google.com/uc?export=download&confirm=IsQA&id=0B-UWHItHGwyMV1Yta19NeXhmaE0

https://mega.nz/temporary/.../f4JznSCB

https://docs.google.com/uc?export=download&confirm=Hua9&id=0B9kLSfObI1xEcVZoMEtOVldyTTQ

https://doc-0c-9s-docs.googleusercontent.com/docs/securesc/fon3m5epect999001ebvikkgfjm10cor/mrfoviropjll6kitpkk5t0d5pe4em6e9/1480737600000/06746853420631337849/.../0B1z7JlaLuOGbT3RaSzNzOHVVWFU?e=download

Latest 30 of 63 download URLs

Scan setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.