eb210ad7feb24acdcc964071c188013d

Summary

Architecture IMAGE_FILE_MACHINE_I386
Subsystem IMAGE_SUBSYSTEM_WINDOWS_GUI
Compilation Date 2022-Jul-29 06:16:48
Detected languages English - United States
CompanyName Adobe Inc.
FileDescription Adobe Installer
FileVersion 2.9.0.38
InternalName Adobe Installer
LegalCopyright © 2015-2022 Adobe. All rights reserved.
OriginalFilename Adobe Installer
ProductName Adobe Installer
ProductVersion 2.9.0.38

Plugin Output

Suspicious PEiD Signature: UPX V2.00-V2.90 -> Markus Oberhumer & Laszlo Molnar & John Reiser
UPX -> www.upx.sourceforge.net
UPX V2.00-V2.90 -> Markus Oberhumer & Laszlo Molnar & John Reiser
Info Cryptographic algorithms detected in the binary: Uses constants related to SHA256
Uses constants related to SHA512
Uses known Mersenne Twister constants
Suspicious The PE is packed with UPX Unusual section name found: UPX0
Section UPX0 is both writable and executable.
Unusual section name found: UPX1
Section UPX1 is both writable and executable.
The PE only has 8 import(s).
The PE's resources are bigger than it is.
Suspicious The PE contains functions most legitimate programs don't use. [!] The program may be hiding some of its imports:
  • LoadLibraryA
  • GetProcAddress
Memory manipulation functions often used by packers:
  • VirtualProtect
  • VirtualAlloc
Leverages the raw socket API to access the Internet:
  • WSAStartup
Suspicious The PE is possibly a dropper. Resource 151 is possibly compressed or encrypted.
Resource 152 is possibly compressed or encrypted.
Resource 153 is possibly compressed or encrypted.
Resource 154 is possibly compressed or encrypted.
Resource 155 is possibly compressed or encrypted.
Resource 156 is possibly compressed or encrypted.
Resource 157 is possibly compressed or encrypted.
Resource 158 is possibly compressed or encrypted.
Resource 159 is possibly compressed or encrypted.
Resource 160 is possibly compressed or encrypted.
Resource 161 is possibly compressed or encrypted.
Resource 162 is possibly compressed or encrypted.
Resource 163 is possibly compressed or encrypted.
Resource 164 is possibly compressed or encrypted.
Resource 165 is possibly compressed or encrypted.
Resource 166 is possibly compressed or encrypted.
Resource 167 is possibly compressed or encrypted.
Resource 168 is possibly compressed or encrypted.
Resource 169 is possibly compressed or encrypted.
Resource 170 is possibly compressed or encrypted.
Resource 171 is possibly compressed or encrypted.
Resource 123 is possibly compressed or encrypted.
Resource 105 is possibly compressed or encrypted.
Resource 121 is possibly compressed or encrypted.
Resources amount for 112.317% of the executable.
Info The PE is digitally signed. Signer: Adobe Inc.
Issuer: DigiCert EV Code Signing CA (SHA2)
Suspicious No VirusTotal score. This file has never been scanned on VirusTotal.

Hashes

MD5 eb210ad7feb24acdcc964071c188013d
SHA1 7624409edad34bff2e399f626ca8850eb8bc1ccf
SHA256 985be6b9a75d8f4ad91b240d799228865d3aa49522f90d8bc4be3dfd2f362b9e
SHA3 47704cac348165d31477d76503649bf87c119bb85238e77cd1714d9e3bda56e6
SSDeep 49152:CuL2dxTVqDaEV6cdYcK5dD56F3O8BWoyjKDFSi/RCYUysnB:CuUxoOe3K/AY89dAiJEy2B
Imports Hash 287bcaeab808a7d33e887ba6cd64374c

DOS Header

e_magic MZ
e_cblp 0x90
e_cp 0x3
e_crlc 0
e_cparhdr 0x4
e_minalloc 0
e_maxalloc 0xffff
e_ss 0
e_sp 0xb8
e_csum 0
e_ip 0
e_cs 0
e_ovno 0
e_oemid 0
e_oeminfo 0
e_lfanew 0x128

PE Header

Signature PE
Machine IMAGE_FILE_MACHINE_I386
NumberofSections 3
TimeDateStamp 2022-Jul-29 06:16:48
PointerToSymbolTable 0
NumberOfSymbols 0
SizeOfOptionalHeader 0xe0
Characteristics IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_EXECUTABLE_IMAGE

Image Optional Header

Magic PE32
LinkerVersion 14.0
SizeOfCode 0x2a1000
SizeOfInitializedData 0xb000
SizeOfUninitializedData 0x604000
AddressOfEntryPoint 0x008A5B50 (Section: UPX1)
BaseOfCode 0x605000
BaseOfData 0x8a6000
ImageBase 0x400000
SectionAlignment 0x1000
FileAlignment 0x200
OperatingSystemVersion 5.1
ImageVersion 0.0
SubsystemVersion 5.1
Win32VersionValue 0
SizeOfImage 0x8b1000
SizeOfHeaders 0x1000
Checksum 0x2b6d83
Subsystem IMAGE_SUBSYSTEM_WINDOWS_GUI
DllCharacteristics IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
SizeofStackReserve 0x100000
SizeofStackCommit 0x1000
SizeofHeapReserve 0x100000
SizeofHeapCommit 0x1000
LoaderFlags 0
NumberOfRvaAndSizes 16

UPX0

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA3 a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
VirtualSize 0x604000
VirtualAddress 0x1000
SizeOfRawData 0
PointerToRawData 0x400
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1

MD5 b8c5e3b9390b224f411bd6ceb131ea66
SHA1 90702f3300d9d5f7bcf7ae6a5d7b83902c1d8fed
SHA256 413011d3976288638bda5fa489832b1412dbda44a26e45141c6a288d6ac50cba
SHA3 ca77e2984c89ea0b55f02da42f2534f83ffbf337ad87bf6cc7288a65be0616ff
VirtualSize 0x2a1000
VirtualAddress 0x605000
SizeOfRawData 0x2a1000
PointerToRawData 0x400
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Entropy 7.89936

.rsrc

MD5 f2688b4dd977fbc0db99fbe8920761ac
SHA1 178e43e4da6f86b61df403618a263492e19f8937
SHA256 f3f38754b8922a91ae8d5e54b7f4f02b18e215d6bedfb16dcdabb4811f99c11f
SHA3 2dcb302ab0225b8cef0a97c17cb11e90b4619471158807a7a8e2eb0f8f08790e
VirtualSize 0xb000
VirtualAddress 0x8a6000
SizeOfRawData 0xa600
PointerToRawData 0x2a1400
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Entropy 3.1323

Imports

KERNEL32.DLL LoadLibraryA
GetProcAddress
VirtualProtect
VirtualAlloc
VirtualFree
ExitProcess
urlmon.dll ObtainUserAgentString
WS2_32.dll WSAStartup

Delayed Imports

122

Type CSS
Language English - United States
Codepage UNKNOWN
Size 0xe5591
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 0
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA3 a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a

151

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0x8e9d
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.8871
MD5 7fe10f593f502d967e13ee325747186e
SHA1 c1a8e59d846fbdb7c22fc68f48e5ba8cd8853fe1
SHA256 706a0152964fdedc63631a21c38ba882c6a1f202f7919f283c4b271d0b6313cf
SHA3 4a50b8ea25feea6f882a1e77f0bb3f10cfa85e4e12b4a4a1fbda74764b4ec52f

152

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0xa8a8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.88976
MD5 445c5d978975ab40a0377cc041999e07
SHA1 a6e1115f4ecbc3f118d466cc333c8d46ce6fc487
SHA256 6ebaba5033e1692c2bd210657df3a234446f89c24c4a7d3c2ad567795165c5e0
SHA3 2700c350c6b55d77a5f01941be8e81c287bef4ee419707f2e5e74542058f81ae

153

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0xabf4
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.89103
MD5 1f1e9335d4a8a6d046c1ce7993860056
SHA1 9a0eed001c194cf88330884119aec0d2e075dd07
SHA256 2b0e80b726cee81fc5d32888b955981221d02209d5a79d7645f19ae243e3e2ff
SHA3 21c7149959edadf00e917bdc14415d28d084c1dee34f8b4f9a7b11a0faf7ab41

154

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0xbe18
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.88673
MD5 95daf00b468a100b6b826124bff337dd
SHA1 cbc768d2253b5d155fa6e0f230cb8d80aa11ff3e
SHA256 97765e5481d1dffe715d4afa018101c435a4120fa73dd46134688c2ee18ff23d
SHA3 eab70e34d4bf991ac4e96ec146a87c350af9ddd614947c335409e17ea1a64aba

155

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0xa195
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.89171
MD5 410e45e395424a0913da1243f50fed7e
SHA1 e8d852d6eb485d0880224cbe064192e1e5e2adbd
SHA256 bf6e9c6a86b22f21d5285c862e93ae36aaaa5287030801db4856e786561d303b
SHA3 3d76397753f0e2057fbbea98b573dac3796cb13dce1a5cdf1c223178ac248272

156

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0x9a02
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.90365
MD5 9c6f56561a7d4673b35cd672d6e21699
SHA1 f0d9327685d25368a4b97c9485f29719e8702c89
SHA256 09505312148d89098e1ae61808dd15b9f72ab3d052f2272f8bafa7afaf60d726
SHA3 4ec4c2aa35f8cedd289dec4e498d0c0c909a70bdd4393a4fc20828e587dde01b

157

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0xa722
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.8567
MD5 5784bcc24f8d058a80aab80868f95d87
SHA1 d53e2bae67ff97e427639d74b9b6e8a74d4192e6
SHA256 9b072a36360c5f1ead5bba6e65acf41d8da8494308618a088b76bd7333dd3739
SHA3 acc1d547cf66ef27ead37fcb0b463e60c0d00b147c4aabc6eaabc5899084b9d5

158

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0x9e7c
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.86258
MD5 4383c5149104c760e6816a28369bad8a
SHA1 3daed8fdb01ac4f3bfb16ff04f74c1b4b5660b56
SHA256 0513fbb4384ea07b4851f6b0957c5a3df43fc9b240483a910f4f34a5f5e4cd79
SHA3 401e817fb805376a626ca42632decf466faa1b9e39a96f8298c8f55edade6a9f

159

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0x87c4
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.86879
MD5 2db61e13e63a461d9e8ad4afcbbe2897
SHA1 a5a7b6e7a44cbdb2437b1d919d59d028d7b1edec
SHA256 8ccdc05cb0076dbff71e4551820483f7ec4c71c7c279163823c49bff9ac69a04
SHA3 4264bdc63412599b4054ff5473837355ea65f20605718ba2fa5c4de4585725bc

160

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0x8a2d
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.859
MD5 88909628061114015149fe7c0aa1e16a
SHA1 605fad37920c2d19c03581f3609540e7583e951b
SHA256 08a3c6fadb30e9ab10ec90f963c471d201221754692fd3d3aa2a90d8ebf7115a
SHA3 da1b0b4c56e3af3fe9aed3199912048d40ee1385370e39b9c1c90dc6daef167e

161

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0x9bfe
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.86873
MD5 2e2b53f21aefd374be48ff8cc7c2b059
SHA1 b7b245a95f9ecc6b34f389157da108453090a6f9
SHA256 5ea0c0f573ebb6c9b861e6d55b1f1d61611a63c1e7d594777e4ef6cef6b36664
SHA3 81b4fe073f5993505d8e3f3d253ad40893650a3f8b080f3eaac6e60e60730218

162

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0x9804
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.88462
MD5 a1407ab338d14d982c70854221fdb694
SHA1 437b5327444192ed9159a3fd15dfde2ef3dd8af2
SHA256 9047be2f79c901148680ec27a8c00f7e39fd756850e60c497ff7d78cae6d5902
SHA3 d96ebbf5f19640be1c009bfe447ebdd02c3fe235ff366edecbe9608f412ef23d

163

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0xa29a
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.89292
MD5 fb1ab94057364543dd23b2525f3a7902
SHA1 c8ce6d135497162e41476ff918e7624ff4899ea3
SHA256 a1f20ed23c0be27c06d73434fa326cfd446da71caf0678ea206723d2ce647b70
SHA3 d9b7c83f504f7d52f777bafad509ddeb1946a13179147c569788fe793bf27fb8

164

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0xa0a3
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.89136
MD5 84f1cb0f852c49c2314b13b1aeb68239
SHA1 2088f3ec51e19453a7e6e427c1edb5d33009ecc4
SHA256 822a4c90f8b6f3dd5521ee8fbf81d6af22b90591eeb4212fa8b2ddd1e0e08e29
SHA3 e9d6fb7d5b11d8b6d538394c1924b7f2acbae3b2409ea983066801eadb6bc5af

165

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0xe098
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.90406
MD5 ecfbf1ea2b2cc7380a0a2f44010a574d
SHA1 d3897c0393eff1bf302fcf5af983af1ac3e5e534
SHA256 04560423fd90b20d75aa527c3a34dd75154941aa882ea037a6b2e4c57e26080d
SHA3 1b5d060f534eba0ad97083761f38f3acb093bf03c644b11c0198803f1b600502

166

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0xa008
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.90096
MD5 946fc6df1b4fdb42c88552bbaf50bddf
SHA1 941581cd5f705ef1cdea2a3f1974ad8e65395c83
SHA256 f6f3d258043636594e38586ddf64e55cb92ac9755f8cbca8870fe657d465000e
SHA3 df785d2eb465adb64093ee3fa868142b39da770edad5f311e635c2d5b186c01e

167

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0x9891
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.88106
MD5 6e01967d5b1b67eb7a40d49892012b8f
SHA1 b8aafc92dde846e7307810bbebbbf3605e710413
SHA256 1e97e9ddc604e122c17a6e8858e2ee9aba50c9095f22f07804e19f7c25cc3645
SHA3 1c5c544295639aadcceb5ab7aacecc9ff3a8f4b046ef354fd8dbc4b677e78932

168

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0x9b7b
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.88998
MD5 0093214328ea6f5e027f21317d057a24
SHA1 1e4b25bf4aa6d4aa775d0960a984ef8fe29e66ea
SHA256 fc279bb799bb1275dca07137f68e11c1331864eac573d1de3272b472f94d532c
SHA3 7ddf4a366c05bcb71d03b3db2ae94348a00c637dca9899989f5bd62060618fab

169

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0x9989
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.89526
MD5 79a3c2ba4614531b221b04d682153530
SHA1 adb49379c20d371532bd0806037401d5f76c0f26
SHA256 8e5662c43bf6ec4f8a4b5dd3f334f5aa6395c0daa5772b7996790df7c7bd98fc
SHA3 3c519789b339bc49091cdbdf52e6fa0abffeb03655dfc6461d42a12c4e0dd207

170

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0xa197
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.90456
MD5 6818d3ea500d10e185e9ce9954b92d0e
SHA1 c26f0b2e089fc394c0e5991d3d816a73d48e8a35
SHA256 1ab49af58e9eef19da418d28aa923fdcb7fbaf655ca9a21b2beb47e4b6477dcd
SHA3 5355ad427e9c52094b2b82f1a5baa186b3a5910731b67bc790a45d7b28194501

171

Type DICTIONARY
Language English - United States
Codepage UNKNOWN
Size 0xac14
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.91989
MD5 b90fe39f53bb7516998d9a22100fd868
SHA1 dba09d5777b6fca63419571689658fc55d67c1ae
SHA256 f315c14580daa028f0ac01396d24b0d91c277b0ac750b90c8d8166a5836b7196
SHA3 c6baf08538ba974cd37a2d5a0a0e9b5ddb1143492c69858faba16342303d7dd5

123

Type JS
Language English - United States
Codepage UNKNOWN
Size 0x13f19b
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.85378
MD5 3c75a844392dc8b633ab336fa6f2f493
SHA1 22252ca4c6ad084e0c748b70240d2323fcd47621
SHA256 5f108219bc6e2752974e05eaec7c7ca6308e1e2b1e83ab645bfc2b7c704d236d
SHA3 b3253876d911017ffa4bfe2b43576ecd69a70bdf9c7801b34fd66ab5c076c3af

105

Type XML
Language English - United States
Codepage UNKNOWN
Size 0x1b2
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.19972
MD5 a7e2430260f49ef16eddb8aa6f32f64b
SHA1 4852972473f7c3ace8c394ec3a0d55c3a01c7dca
SHA256 e1801887b72266d119b7f52a9aec26ba78a98806a1895c49a37c2b627d2abebe
SHA3 7bd1807f1dfdc2216b817eafca4fe0a68e92324dec6585da3c21507d6a4af38e

1

Type RT_ICON
Language English - United States
Codepage UNKNOWN
Size 0x468
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.06337
MD5 29544309cbdcf6ee42692f22c477d056
SHA1 31cdc8ef493d61f88c700a659bfb150c86f5c6ad
SHA256 7f9b83e48c1f485156e832e3eedde927033274b0a1b9900ce187247826627a05
SHA3 dfe5fcc2bd84f61842400493ef5ab212f6b520da8acb82f15826e5e9dbaa2777

2

Type RT_ICON
Language English - United States
Codepage UNKNOWN
Size 0x988
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.05221
MD5 9472a32a762a845b2c32575c5ad83344
SHA1 1c07072a5161c111b11dd2b0ef80214e6292a5c7
SHA256 b2d5bfdc7e75e2134b97c691f6e88a2e8734083bbf5856b75e65155f00ba78d0
SHA3 2aa459c1b82e7304d7e185a36e1a75c7b2e4096c5c8c50b010a27c45e2350cca

3

Type RT_ICON
Language English - United States
Codepage UNKNOWN
Size 0x10a8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 1.97646
MD5 ab60eb19f4f4695c53790885e621a5da
SHA1 67fb50ad0451747afd87f49ab8be4510b97f1cb4
SHA256 4637846a07146d3828a9e9a3b559526329fd418e777b761058ca8112481e9289
SHA3 aec47939bbffc554fc7fbaac5ff27d666476e905b3b619ba0e5b986c25d83930

4

Type RT_ICON
Language English - United States
Codepage UNKNOWN
Size 0x25a8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 1.8769
MD5 13f370e47b1508ad79ec91da488fa861
SHA1 08372604e85baddb35ec9eef9032fc54a15bfbd0
SHA256 cf8f3b36979672d60a311689920416440a04096696d87d04ddefbed90431c334
SHA3 eedf27c1a299dfd85d8dc93b730d6183216f0d764a6f732c5d0958d972553f44

5

Type RT_ICON
Language English - United States
Codepage UNKNOWN
Size 0x4228
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 1.83344
MD5 b0c2a472640ed9476db109df4d116ec6
SHA1 d610bf3d84aaa2773ba944fdea2f4a25b4e05305
SHA256 007309b909174926500deb247bc312afac8fd99205315e6f8d506b1c57d77053
SHA3 0e86462fc8effa607ac39f14e2100801731747a07a0b1e3060bbfc35af378533

6

Type RT_ICON
Language English - United States
Codepage UNKNOWN
Size 0xbe4
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.54817
Detected Filetype PNG graphic file
MD5 b564ed5af900dd7e48a2dbc809578b7f
SHA1 eeeddc5126a1abd065798b46b6510c3ab30936be
SHA256 47691f7fe5c9d75e22a68d801fefa18980b6a667531d0cdd5e290da4c2bd0fde
SHA3 809d0075ae8fff0e2ec225d8c15ba28c6ceab5aca01587a238dda955d85f66fd

101

Type RT_GROUP_ICON
Language English - United States
Codepage UNKNOWN
Size 0x5a
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.79371
Detected Filetype Icon file
MD5 e6c0964edca07b5e3eec0a2d856962c5
SHA1 14e8275f257728f5ab88a2a5b5caed7d14a6bd32
SHA256 8bd2e3615aaf196098706a0e06c8faa05fd06362de2484a121391a2d85651dbb
SHA3 f4995cf54a70c8a89859bc1c1ab9387590485530eb17c601e6426e885a1b3d8e

1 (#2)

Type RT_VERSION
Language English - United States
Codepage UNKNOWN
Size 0x304
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.38844
MD5 4de969cca73f90fe1f548064252317f2
SHA1 483b8d57ac520cc795950f0745453f654847c557
SHA256 a79c950d8550aa868c98646a944b293f839468b4934eff501e57d0f40845ba46
SHA3 0bcc56b6f01d6d172a6f509aad1ff1d2bbd81b062e015c3b1695e4450c01c800

121

Type RT_HTML
Language English - United States
Codepage UNKNOWN
Size 0x1aa
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.3628
MD5 5c7df957d20369d9f259a9a7786b6a98
SHA1 93d84fbeffad2f7f0955149f71a86f5c02e0a4f7
SHA256 8a3d10453bc42f594d4562e01865a64d640ad42a41b326bc65de83d694b1d925
SHA3 3e8b1689762c5f2180e1541acd02a8d5cc391b1ffeeeab416a9579e8e15b1064

1 (#3)

Type RT_MANIFEST
Language English - United States
Codepage UNKNOWN
Size 0x773
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 5.14505
MD5 be6955cabe68b055757dbc682e99d10b
SHA1 f64433637f828e1d1dd1df5ae026c0a1e253494b
SHA256 e2241b58e1173bfef76aa67a8177a8e5f0e907d2f9b2d7d852f3dc04ad6f1709
SHA3 030982aff3e4e2c5ff33a318c64d36671c17a5961eca4b8f9f77245b22bb7b64

Version Info

Signature 0xfeef04bd
StructVersion 0x10000
FileVersion 2.9.0.38
ProductVersion 2.9.0.38
FileFlags (EMPTY)
FileOs VOS_DOS_WINDOWS32
VOS_NT
VOS_NT_WINDOWS32
VOS_WINCE
VOS__WINDOWS32
FileType VFT_DLL
Language English - United States
CompanyName Adobe Inc.
FileDescription Adobe Installer
FileVersion (#2) 2.9.0.38
InternalName Adobe Installer
LegalCopyright © 2015-2022 Adobe. All rights reserved.
OriginalFilename Adobe Installer
ProductName Adobe Installer
ProductVersion (#2) 2.9.0.38
Resource LangID English - United States

TLS Callbacks

Load Configuration

Size 0xbc
TimeDateStamp 1970-Jan-01 00:00:00
Version 0.0
GlobalFlagsClear (EMPTY)
GlobalFlagsSet (EMPTY)
CriticalSectionDefaultTimeout 0
DeCommitFreeBlockThreshold 0
DeCommitTotalFreeThreshold 0
LockPrefixTable 0
MaximumAllocationSize 0
VirtualMemoryThreshold 0
ProcessAffinityMask 0
ProcessHeapFlags (EMPTY)
CSDVersion 0
Reserved1 0
EditList 0
SecurityCookie 0x909334
SEHandlerTable 0x8bee04
SEHandlerCount 2306

RICH Header

XOR Key 0x486ccbc2
Unmarked objects 0
ASM objects (27412) 17
C++ objects (27412) 212
253 (23601) 2
C objects (30034) 19
ASM objects (30034) 26
C objects (VS2019 Update 11 (16.11.4-5) compiler 30136) 2
C++ objects (VS2019 Update 11 (16.11.4-5) compiler 30136) 102
C++ objects (30034) 115
C objects (27412) 35
C objects (CVTCIL) (27412) 2
Imports (27412) 7
Total imports 560
C++ objects (LTCG) (VS2019 Update 11 (16.11.4-5) compiler 30136) 347
Resource objects (VS2019 Update 11 (16.11.4-5) compiler 30136) 1
151 1
Linker (VS2019 Update 11 (16.11.4-5) compiler 30136) 1

Errors

[*] Warning: Could not read the Delay-Load Directory Table! [!] Error: Could not reach the TLS callback table. [*] Warning: Section UPX0 has a size of 0! [*] Warning: Resource is empty!
<-- -->