Architecture |
IMAGE_FILE_MACHINE_I386
|
Subsystem |
IMAGE_SUBSYSTEM_WINDOWS_GUI
|
Compilation Date |
2022-Jul-29 06:16:48
|
Detected languages |
English - United States
|
CompanyName |
Adobe Inc.
|
FileDescription |
Adobe Installer
|
FileVersion |
2.9.0.38
|
InternalName |
Adobe Installer
|
LegalCopyright |
© 2015-2022 Adobe. All rights reserved.
|
OriginalFilename |
Adobe Installer
|
ProductName |
Adobe Installer
|
ProductVersion |
2.9.0.38
|
Suspicious |
PEiD Signature: |
UPX V2.00-V2.90 -> Markus Oberhumer & Laszlo Molnar & John Reiser
UPX -> www.upx.sourceforge.net
UPX V2.00-V2.90 -> Markus Oberhumer & Laszlo Molnar & John Reiser
|
Info |
Cryptographic algorithms detected in the binary: |
Uses constants related to SHA256
Uses constants related to SHA512
Uses known Mersenne Twister constants
|
Suspicious |
The PE is packed with UPX |
Unusual section name found: UPX0
Section UPX0 is both writable and executable.
Unusual section name found: UPX1
Section UPX1 is both writable and executable.
The PE only has 8 import(s).
The PE's resources are bigger than it is.
|
Suspicious |
The PE contains functions most legitimate programs don't use. |
[!] The program may be hiding some of its imports:
- LoadLibraryA
- GetProcAddress
Memory manipulation functions often used by packers:
- VirtualProtect
- VirtualAlloc
Leverages the raw socket API to access the Internet:
|
Suspicious |
The PE is possibly a dropper. |
Resource 151 is possibly compressed or encrypted.
Resource 152 is possibly compressed or encrypted.
Resource 153 is possibly compressed or encrypted.
Resource 154 is possibly compressed or encrypted.
Resource 155 is possibly compressed or encrypted.
Resource 156 is possibly compressed or encrypted.
Resource 157 is possibly compressed or encrypted.
Resource 158 is possibly compressed or encrypted.
Resource 159 is possibly compressed or encrypted.
Resource 160 is possibly compressed or encrypted.
Resource 161 is possibly compressed or encrypted.
Resource 162 is possibly compressed or encrypted.
Resource 163 is possibly compressed or encrypted.
Resource 164 is possibly compressed or encrypted.
Resource 165 is possibly compressed or encrypted.
Resource 166 is possibly compressed or encrypted.
Resource 167 is possibly compressed or encrypted.
Resource 168 is possibly compressed or encrypted.
Resource 169 is possibly compressed or encrypted.
Resource 170 is possibly compressed or encrypted.
Resource 171 is possibly compressed or encrypted.
Resource 123 is possibly compressed or encrypted.
Resource 105 is possibly compressed or encrypted.
Resource 121 is possibly compressed or encrypted.
Resources amount for 112.317% of the executable.
|
Info |
The PE is digitally signed. |
Signer: Adobe Inc.
Issuer: DigiCert EV Code Signing CA (SHA2)
|
Suspicious |
No VirusTotal score. |
This file has never been scanned on VirusTotal.
|
MD5 |
eb210ad7feb24acdcc964071c188013d
|
SHA1 |
7624409edad34bff2e399f626ca8850eb8bc1ccf
|
SHA256 |
985be6b9a75d8f4ad91b240d799228865d3aa49522f90d8bc4be3dfd2f362b9e
|
SHA3 |
47704cac348165d31477d76503649bf87c119bb85238e77cd1714d9e3bda56e6
|
SSDeep |
49152:CuL2dxTVqDaEV6cdYcK5dD56F3O8BWoyjKDFSi/RCYUysnB:CuUxoOe3K/AY89dAiJEy2B
|
Imports Hash |
287bcaeab808a7d33e887ba6cd64374c
|
e_magic |
MZ
|
e_cblp |
0x90
|
e_cp |
0x3
|
e_crlc |
0
|
e_cparhdr |
0x4
|
e_minalloc |
0
|
e_maxalloc |
0xffff
|
e_ss |
0
|
e_sp |
0xb8
|
e_csum |
0
|
e_ip |
0
|
e_cs |
0
|
e_ovno |
0
|
e_oemid |
0
|
e_oeminfo |
0
|
e_lfanew |
0x128
|
Signature |
PE
|
Machine |
IMAGE_FILE_MACHINE_I386
|
NumberofSections |
3
|
TimeDateStamp |
2022-Jul-29 06:16:48
|
PointerToSymbolTable |
0
|
NumberOfSymbols |
0
|
SizeOfOptionalHeader |
0xe0
|
Characteristics |
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_EXECUTABLE_IMAGE
|
Magic |
PE32
|
LinkerVersion |
14.0
|
SizeOfCode |
0x2a1000
|
SizeOfInitializedData |
0xb000
|
SizeOfUninitializedData |
0x604000
|
AddressOfEntryPoint |
0x008A5B50 (Section: UPX1)
|
BaseOfCode |
0x605000
|
BaseOfData |
0x8a6000
|
ImageBase |
0x400000
|
SectionAlignment |
0x1000
|
FileAlignment |
0x200
|
OperatingSystemVersion |
5.1
|
ImageVersion |
0.0
|
SubsystemVersion |
5.1
|
Win32VersionValue |
0
|
SizeOfImage |
0x8b1000
|
SizeOfHeaders |
0x1000
|
Checksum |
0x2b6d83
|
Subsystem |
IMAGE_SUBSYSTEM_WINDOWS_GUI
|
DllCharacteristics |
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
|
SizeofStackReserve |
0x100000
|
SizeofStackCommit |
0x1000
|
SizeofHeapReserve |
0x100000
|
SizeofHeapCommit |
0x1000
|
LoaderFlags |
0
|
NumberOfRvaAndSizes |
16
|
MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
VirtualSize |
0x604000
|
VirtualAddress |
0x1000
|
SizeOfRawData |
0
|
PointerToRawData |
0x400
|
PointerToRelocations |
0
|
PointerToLineNumbers |
0
|
NumberOfLineNumbers |
0
|
NumberOfRelocations |
0
|
Characteristics |
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
|
MD5 |
b8c5e3b9390b224f411bd6ceb131ea66
|
SHA1 |
90702f3300d9d5f7bcf7ae6a5d7b83902c1d8fed
|
SHA256 |
413011d3976288638bda5fa489832b1412dbda44a26e45141c6a288d6ac50cba
|
SHA3 |
ca77e2984c89ea0b55f02da42f2534f83ffbf337ad87bf6cc7288a65be0616ff
|
VirtualSize |
0x2a1000
|
VirtualAddress |
0x605000
|
SizeOfRawData |
0x2a1000
|
PointerToRawData |
0x400
|
PointerToRelocations |
0
|
PointerToLineNumbers |
0
|
NumberOfLineNumbers |
0
|
NumberOfRelocations |
0
|
Characteristics |
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
|
Entropy |
7.89936
|
MD5 |
f2688b4dd977fbc0db99fbe8920761ac
|
SHA1 |
178e43e4da6f86b61df403618a263492e19f8937
|
SHA256 |
f3f38754b8922a91ae8d5e54b7f4f02b18e215d6bedfb16dcdabb4811f99c11f
|
SHA3 |
2dcb302ab0225b8cef0a97c17cb11e90b4619471158807a7a8e2eb0f8f08790e
|
VirtualSize |
0xb000
|
VirtualAddress |
0x8a6000
|
SizeOfRawData |
0xa600
|
PointerToRawData |
0x2a1400
|
PointerToRelocations |
0
|
PointerToLineNumbers |
0
|
NumberOfLineNumbers |
0
|
NumberOfRelocations |
0
|
Characteristics |
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
|
Entropy |
3.1323
|
KERNEL32.DLL |
LoadLibraryA
GetProcAddress
VirtualProtect
VirtualAlloc
VirtualFree
ExitProcess
|
urlmon.dll |
ObtainUserAgentString
|
WS2_32.dll |
WSAStartup
|
Type |
CSS
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0xe5591
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
0
|
MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x8e9d
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.8871
|
MD5 |
7fe10f593f502d967e13ee325747186e
|
SHA1 |
c1a8e59d846fbdb7c22fc68f48e5ba8cd8853fe1
|
SHA256 |
706a0152964fdedc63631a21c38ba882c6a1f202f7919f283c4b271d0b6313cf
|
SHA3 |
4a50b8ea25feea6f882a1e77f0bb3f10cfa85e4e12b4a4a1fbda74764b4ec52f
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0xa8a8
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.88976
|
MD5 |
445c5d978975ab40a0377cc041999e07
|
SHA1 |
a6e1115f4ecbc3f118d466cc333c8d46ce6fc487
|
SHA256 |
6ebaba5033e1692c2bd210657df3a234446f89c24c4a7d3c2ad567795165c5e0
|
SHA3 |
2700c350c6b55d77a5f01941be8e81c287bef4ee419707f2e5e74542058f81ae
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0xabf4
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.89103
|
MD5 |
1f1e9335d4a8a6d046c1ce7993860056
|
SHA1 |
9a0eed001c194cf88330884119aec0d2e075dd07
|
SHA256 |
2b0e80b726cee81fc5d32888b955981221d02209d5a79d7645f19ae243e3e2ff
|
SHA3 |
21c7149959edadf00e917bdc14415d28d084c1dee34f8b4f9a7b11a0faf7ab41
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0xbe18
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.88673
|
MD5 |
95daf00b468a100b6b826124bff337dd
|
SHA1 |
cbc768d2253b5d155fa6e0f230cb8d80aa11ff3e
|
SHA256 |
97765e5481d1dffe715d4afa018101c435a4120fa73dd46134688c2ee18ff23d
|
SHA3 |
eab70e34d4bf991ac4e96ec146a87c350af9ddd614947c335409e17ea1a64aba
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0xa195
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.89171
|
MD5 |
410e45e395424a0913da1243f50fed7e
|
SHA1 |
e8d852d6eb485d0880224cbe064192e1e5e2adbd
|
SHA256 |
bf6e9c6a86b22f21d5285c862e93ae36aaaa5287030801db4856e786561d303b
|
SHA3 |
3d76397753f0e2057fbbea98b573dac3796cb13dce1a5cdf1c223178ac248272
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x9a02
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.90365
|
MD5 |
9c6f56561a7d4673b35cd672d6e21699
|
SHA1 |
f0d9327685d25368a4b97c9485f29719e8702c89
|
SHA256 |
09505312148d89098e1ae61808dd15b9f72ab3d052f2272f8bafa7afaf60d726
|
SHA3 |
4ec4c2aa35f8cedd289dec4e498d0c0c909a70bdd4393a4fc20828e587dde01b
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0xa722
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.8567
|
MD5 |
5784bcc24f8d058a80aab80868f95d87
|
SHA1 |
d53e2bae67ff97e427639d74b9b6e8a74d4192e6
|
SHA256 |
9b072a36360c5f1ead5bba6e65acf41d8da8494308618a088b76bd7333dd3739
|
SHA3 |
acc1d547cf66ef27ead37fcb0b463e60c0d00b147c4aabc6eaabc5899084b9d5
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x9e7c
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.86258
|
MD5 |
4383c5149104c760e6816a28369bad8a
|
SHA1 |
3daed8fdb01ac4f3bfb16ff04f74c1b4b5660b56
|
SHA256 |
0513fbb4384ea07b4851f6b0957c5a3df43fc9b240483a910f4f34a5f5e4cd79
|
SHA3 |
401e817fb805376a626ca42632decf466faa1b9e39a96f8298c8f55edade6a9f
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x87c4
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.86879
|
MD5 |
2db61e13e63a461d9e8ad4afcbbe2897
|
SHA1 |
a5a7b6e7a44cbdb2437b1d919d59d028d7b1edec
|
SHA256 |
8ccdc05cb0076dbff71e4551820483f7ec4c71c7c279163823c49bff9ac69a04
|
SHA3 |
4264bdc63412599b4054ff5473837355ea65f20605718ba2fa5c4de4585725bc
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x8a2d
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.859
|
MD5 |
88909628061114015149fe7c0aa1e16a
|
SHA1 |
605fad37920c2d19c03581f3609540e7583e951b
|
SHA256 |
08a3c6fadb30e9ab10ec90f963c471d201221754692fd3d3aa2a90d8ebf7115a
|
SHA3 |
da1b0b4c56e3af3fe9aed3199912048d40ee1385370e39b9c1c90dc6daef167e
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x9bfe
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.86873
|
MD5 |
2e2b53f21aefd374be48ff8cc7c2b059
|
SHA1 |
b7b245a95f9ecc6b34f389157da108453090a6f9
|
SHA256 |
5ea0c0f573ebb6c9b861e6d55b1f1d61611a63c1e7d594777e4ef6cef6b36664
|
SHA3 |
81b4fe073f5993505d8e3f3d253ad40893650a3f8b080f3eaac6e60e60730218
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x9804
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.88462
|
MD5 |
a1407ab338d14d982c70854221fdb694
|
SHA1 |
437b5327444192ed9159a3fd15dfde2ef3dd8af2
|
SHA256 |
9047be2f79c901148680ec27a8c00f7e39fd756850e60c497ff7d78cae6d5902
|
SHA3 |
d96ebbf5f19640be1c009bfe447ebdd02c3fe235ff366edecbe9608f412ef23d
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0xa29a
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.89292
|
MD5 |
fb1ab94057364543dd23b2525f3a7902
|
SHA1 |
c8ce6d135497162e41476ff918e7624ff4899ea3
|
SHA256 |
a1f20ed23c0be27c06d73434fa326cfd446da71caf0678ea206723d2ce647b70
|
SHA3 |
d9b7c83f504f7d52f777bafad509ddeb1946a13179147c569788fe793bf27fb8
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0xa0a3
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.89136
|
MD5 |
84f1cb0f852c49c2314b13b1aeb68239
|
SHA1 |
2088f3ec51e19453a7e6e427c1edb5d33009ecc4
|
SHA256 |
822a4c90f8b6f3dd5521ee8fbf81d6af22b90591eeb4212fa8b2ddd1e0e08e29
|
SHA3 |
e9d6fb7d5b11d8b6d538394c1924b7f2acbae3b2409ea983066801eadb6bc5af
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0xe098
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.90406
|
MD5 |
ecfbf1ea2b2cc7380a0a2f44010a574d
|
SHA1 |
d3897c0393eff1bf302fcf5af983af1ac3e5e534
|
SHA256 |
04560423fd90b20d75aa527c3a34dd75154941aa882ea037a6b2e4c57e26080d
|
SHA3 |
1b5d060f534eba0ad97083761f38f3acb093bf03c644b11c0198803f1b600502
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0xa008
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.90096
|
MD5 |
946fc6df1b4fdb42c88552bbaf50bddf
|
SHA1 |
941581cd5f705ef1cdea2a3f1974ad8e65395c83
|
SHA256 |
f6f3d258043636594e38586ddf64e55cb92ac9755f8cbca8870fe657d465000e
|
SHA3 |
df785d2eb465adb64093ee3fa868142b39da770edad5f311e635c2d5b186c01e
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x9891
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.88106
|
MD5 |
6e01967d5b1b67eb7a40d49892012b8f
|
SHA1 |
b8aafc92dde846e7307810bbebbbf3605e710413
|
SHA256 |
1e97e9ddc604e122c17a6e8858e2ee9aba50c9095f22f07804e19f7c25cc3645
|
SHA3 |
1c5c544295639aadcceb5ab7aacecc9ff3a8f4b046ef354fd8dbc4b677e78932
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x9b7b
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.88998
|
MD5 |
0093214328ea6f5e027f21317d057a24
|
SHA1 |
1e4b25bf4aa6d4aa775d0960a984ef8fe29e66ea
|
SHA256 |
fc279bb799bb1275dca07137f68e11c1331864eac573d1de3272b472f94d532c
|
SHA3 |
7ddf4a366c05bcb71d03b3db2ae94348a00c637dca9899989f5bd62060618fab
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x9989
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.89526
|
MD5 |
79a3c2ba4614531b221b04d682153530
|
SHA1 |
adb49379c20d371532bd0806037401d5f76c0f26
|
SHA256 |
8e5662c43bf6ec4f8a4b5dd3f334f5aa6395c0daa5772b7996790df7c7bd98fc
|
SHA3 |
3c519789b339bc49091cdbdf52e6fa0abffeb03655dfc6461d42a12c4e0dd207
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0xa197
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.90456
|
MD5 |
6818d3ea500d10e185e9ce9954b92d0e
|
SHA1 |
c26f0b2e089fc394c0e5991d3d816a73d48e8a35
|
SHA256 |
1ab49af58e9eef19da418d28aa923fdcb7fbaf655ca9a21b2beb47e4b6477dcd
|
SHA3 |
5355ad427e9c52094b2b82f1a5baa186b3a5910731b67bc790a45d7b28194501
|
Type |
DICTIONARY
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0xac14
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.91989
|
MD5 |
b90fe39f53bb7516998d9a22100fd868
|
SHA1 |
dba09d5777b6fca63419571689658fc55d67c1ae
|
SHA256 |
f315c14580daa028f0ac01396d24b0d91c277b0ac750b90c8d8166a5836b7196
|
SHA3 |
c6baf08538ba974cd37a2d5a0a0e9b5ddb1143492c69858faba16342303d7dd5
|
Type |
JS
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x13f19b
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.85378
|
MD5 |
3c75a844392dc8b633ab336fa6f2f493
|
SHA1 |
22252ca4c6ad084e0c748b70240d2323fcd47621
|
SHA256 |
5f108219bc6e2752974e05eaec7c7ca6308e1e2b1e83ab645bfc2b7c704d236d
|
SHA3 |
b3253876d911017ffa4bfe2b43576ecd69a70bdf9c7801b34fd66ab5c076c3af
|
Type |
XML
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x1b2
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.19972
|
MD5 |
a7e2430260f49ef16eddb8aa6f32f64b
|
SHA1 |
4852972473f7c3ace8c394ec3a0d55c3a01c7dca
|
SHA256 |
e1801887b72266d119b7f52a9aec26ba78a98806a1895c49a37c2b627d2abebe
|
SHA3 |
7bd1807f1dfdc2216b817eafca4fe0a68e92324dec6585da3c21507d6a4af38e
|
Type |
RT_ICON
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x468
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
2.06337
|
MD5 |
29544309cbdcf6ee42692f22c477d056
|
SHA1 |
31cdc8ef493d61f88c700a659bfb150c86f5c6ad
|
SHA256 |
7f9b83e48c1f485156e832e3eedde927033274b0a1b9900ce187247826627a05
|
SHA3 |
dfe5fcc2bd84f61842400493ef5ab212f6b520da8acb82f15826e5e9dbaa2777
|
Type |
RT_ICON
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x988
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
2.05221
|
MD5 |
9472a32a762a845b2c32575c5ad83344
|
SHA1 |
1c07072a5161c111b11dd2b0ef80214e6292a5c7
|
SHA256 |
b2d5bfdc7e75e2134b97c691f6e88a2e8734083bbf5856b75e65155f00ba78d0
|
SHA3 |
2aa459c1b82e7304d7e185a36e1a75c7b2e4096c5c8c50b010a27c45e2350cca
|
Type |
RT_ICON
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x10a8
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
1.97646
|
MD5 |
ab60eb19f4f4695c53790885e621a5da
|
SHA1 |
67fb50ad0451747afd87f49ab8be4510b97f1cb4
|
SHA256 |
4637846a07146d3828a9e9a3b559526329fd418e777b761058ca8112481e9289
|
SHA3 |
aec47939bbffc554fc7fbaac5ff27d666476e905b3b619ba0e5b986c25d83930
|
Type |
RT_ICON
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x25a8
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
1.8769
|
MD5 |
13f370e47b1508ad79ec91da488fa861
|
SHA1 |
08372604e85baddb35ec9eef9032fc54a15bfbd0
|
SHA256 |
cf8f3b36979672d60a311689920416440a04096696d87d04ddefbed90431c334
|
SHA3 |
eedf27c1a299dfd85d8dc93b730d6183216f0d764a6f732c5d0958d972553f44
|
Type |
RT_ICON
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x4228
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
1.83344
|
MD5 |
b0c2a472640ed9476db109df4d116ec6
|
SHA1 |
d610bf3d84aaa2773ba944fdea2f4a25b4e05305
|
SHA256 |
007309b909174926500deb247bc312afac8fd99205315e6f8d506b1c57d77053
|
SHA3 |
0e86462fc8effa607ac39f14e2100801731747a07a0b1e3060bbfc35af378533
|
Type |
RT_ICON
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0xbe4
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.54817
|
Detected Filetype |
PNG graphic file
|
MD5 |
b564ed5af900dd7e48a2dbc809578b7f
|
SHA1 |
eeeddc5126a1abd065798b46b6510c3ab30936be
|
SHA256 |
47691f7fe5c9d75e22a68d801fefa18980b6a667531d0cdd5e290da4c2bd0fde
|
SHA3 |
809d0075ae8fff0e2ec225d8c15ba28c6ceab5aca01587a238dda955d85f66fd
|
Type |
RT_GROUP_ICON
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x5a
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
2.79371
|
Detected Filetype |
Icon file
|
MD5 |
e6c0964edca07b5e3eec0a2d856962c5
|
SHA1 |
14e8275f257728f5ab88a2a5b5caed7d14a6bd32
|
SHA256 |
8bd2e3615aaf196098706a0e06c8faa05fd06362de2484a121391a2d85651dbb
|
SHA3 |
f4995cf54a70c8a89859bc1c1ab9387590485530eb17c601e6426e885a1b3d8e
|
Type |
RT_VERSION
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x304
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
3.38844
|
MD5 |
4de969cca73f90fe1f548064252317f2
|
SHA1 |
483b8d57ac520cc795950f0745453f654847c557
|
SHA256 |
a79c950d8550aa868c98646a944b293f839468b4934eff501e57d0f40845ba46
|
SHA3 |
0bcc56b6f01d6d172a6f509aad1ff1d2bbd81b062e015c3b1695e4450c01c800
|
Type |
RT_HTML
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x1aa
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
7.3628
|
MD5 |
5c7df957d20369d9f259a9a7786b6a98
|
SHA1 |
93d84fbeffad2f7f0955149f71a86f5c02e0a4f7
|
SHA256 |
8a3d10453bc42f594d4562e01865a64d640ad42a41b326bc65de83d694b1d925
|
SHA3 |
3e8b1689762c5f2180e1541acd02a8d5cc391b1ffeeeab416a9579e8e15b1064
|
Type |
RT_MANIFEST
|
Language |
English - United States
|
Codepage |
UNKNOWN
|
Size |
0x773
|
TimeDateStamp |
1980-Jan-01 00:00:00
|
Entropy |
5.14505
|
MD5 |
be6955cabe68b055757dbc682e99d10b
|
SHA1 |
f64433637f828e1d1dd1df5ae026c0a1e253494b
|
SHA256 |
e2241b58e1173bfef76aa67a8177a8e5f0e907d2f9b2d7d852f3dc04ad6f1709
|
SHA3 |
030982aff3e4e2c5ff33a318c64d36671c17a5961eca4b8f9f77245b22bb7b64
|
Signature |
0xfeef04bd
|
StructVersion |
0x10000
|
FileVersion |
2.9.0.38
|
ProductVersion |
2.9.0.38
|
FileFlags |
(EMPTY)
|
FileOs |
VOS_DOS_WINDOWS32
VOS_NT
VOS_NT_WINDOWS32
VOS_WINCE
VOS__WINDOWS32
|
FileType |
VFT_DLL
|
Language |
English - United States
|
CompanyName |
Adobe Inc.
|
FileDescription |
Adobe Installer
|
FileVersion (#2) |
2.9.0.38
|
InternalName |
Adobe Installer
|
LegalCopyright |
© 2015-2022 Adobe. All rights reserved.
|
OriginalFilename |
Adobe Installer
|
ProductName |
Adobe Installer
|
ProductVersion (#2) |
2.9.0.38
|
Resource LangID |
English - United States
|
Size |
0xbc
|
TimeDateStamp |
1970-Jan-01 00:00:00
|
Version |
0.0
|
GlobalFlagsClear |
(EMPTY)
|
GlobalFlagsSet |
(EMPTY)
|
CriticalSectionDefaultTimeout |
0
|
DeCommitFreeBlockThreshold |
0
|
DeCommitTotalFreeThreshold |
0
|
LockPrefixTable |
0
|
MaximumAllocationSize |
0
|
VirtualMemoryThreshold |
0
|
ProcessAffinityMask |
0
|
ProcessHeapFlags |
(EMPTY)
|
CSDVersion |
0
|
Reserved1 |
0
|
EditList |
0
|
SecurityCookie |
0x909334
|
SEHandlerTable |
0x8bee04
|
SEHandlerCount |
2306
|
XOR Key |
0x486ccbc2
|
Unmarked objects |
0
|
ASM objects (27412) |
17
|
C++ objects (27412) |
212
|
253 (23601) |
2
|
C objects (30034) |
19
|
ASM objects (30034) |
26
|
C objects (VS2019 Update 11 (16.11.4-5) compiler 30136) |
2
|
C++ objects (VS2019 Update 11 (16.11.4-5) compiler 30136) |
102
|
C++ objects (30034) |
115
|
C objects (27412) |
35
|
C objects (CVTCIL) (27412) |
2
|
Imports (27412) |
7
|
Total imports |
560
|
C++ objects (LTCG) (VS2019 Update 11 (16.11.4-5) compiler 30136) |
347
|
Resource objects (VS2019 Update 11 (16.11.4-5) compiler 30136) |
1
|
151 |
1
|
Linker (VS2019 Update 11 (16.11.4-5) compiler 30136) |
1
|
[*] Warning: Could not read the Delay-Load Directory Table!
[!] Error: Could not reach the TLS callback table.
[*] Warning: Section UPX0 has a size of 0!
[*] Warning: Resource is empty!