Suspicious server as updater for Adobe program?

RoboMan

Level 34
Thread author
Verified
Top Poster
Content Creator
Well-known
Jun 24, 2016
2,399
I was surfing on the web when suddenly ESET noticed me of a strange event. Adobe Acrobat Updater was trying to open a connection to an unknown server: ocsp.digicert.com. Used to known servers to update and after the CCleaner incident paranoia, i decided to block the access and google. Apparently, on the web they say this OCSP is a protocol related to certificates. VirusTotal throws 0 detected threats but community there voted all negative. If you visit the aforementioned server, it automatically downloads a file that i uploaded to VT and again threw 0 detected threats but has a community score of -188 (negative).

Anybody knows anything about this? Can anybody clarify a little if you have knowledge on the subject?

VT link to downlaoded file: VirusTotal

VT link to host scan: VirusTotal
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top