home

coreldraw.x5.pt-br.portatil.exe

Corel Graphics Applications

Blog do Birungueta

This is a setup program which is used to install the application. The file has been seen being downloaded from download.wetransfer.com and multiple other hosts.
Publisher:
Blog do Birungueta

Product:
Corel Graphics Applications

Description:
www.birungueta.blogspot.com

Version:
15.0.0.486

MD5:
f787e4e3deb18484f8ce3e5f03d5ad8d

SHA-1:
38ceab1e4feeed149eec56422685d020e7da0ea9

SHA-256:
eb113d09d7628c8b8039d52bb225f1b3b297647f486495debe5d5f8b0cc6d7d1

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 1:56:20 PM UTC  (today)

File size:
281.4 MB (295,106,454 bytes)

Product version:
15.0.0.486

Copyright:
Copyright(c) 2010 Corel Corporation

Trademarks:
Corel, CorelDRAW, Corel DESIGNER, Corel R.A.V.E., Corel PHOTO-PAINT, CorelTRACE and Corel CAPTURE are trademarks or registered trademarks of Corel Cor

Original file name:
CorelDrw.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

File PE Metadata
OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6291456:SXrDrzBwKvKliDyk39YZfXO+sgc4W3pv2QRC3IaaqOpLSVYrH:2yKvndqZfXO+g2QRKda5LSsH

Entry address:
0x419F

Entry point:
55, 8B, EC, 83, E4, F8, 81, EC, F4, 0C, 00, 00, 53, 56, 57, E8, 82, FB, FF, FF, 8B, 35, 0C, F0, 43, 00, FF, D6, 83, E0, 11, BB, 10, 50, 40, 00, 3D, 11, 01, 00, 00, 0F, 84, 21, 04, 00, 00, FF, D6, A3, 0C, 50, 40, 00, E8, 4D, FC, FF, FF, 8B, C8, 2B, 0D, 0C, 50, 40, 00, 6A, 03, 33, D2, 8B, C1, 5E, F7, F6, F7, C1, 00, 80, FF, FF, 0F, 85, A9, 02, 00, 00, 33, C0, 33, FF, 89, BC, 24, E4, 08, 00, 00, 66, 89, 84, 24, D0, 04, 00, 00, 89, BC, 24, CC, 04, 00, 00, 66, 89, 84, 24, B8, 00, 00, 00, E8, 09, FC, FF, FF, 8B...
 
[+]

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
15.5 KB (15,872 bytes)

The file coreldraw.x5.pt-br.portatil.exe has been seen being distributed by the following 4 URLs.

https://download.wetransfer.com/us2/.../Corel DRAW X5.exe

http://dc616.4shared.com/download/.../coreldrawx5pt-brportatil.exe

https://doc-0g-14-docs.googleusercontent.com/docs/securesc/5mqgb35k1ioiberegdrdh307rc746gf6/n44aoib9ooej9nl1npjbk0udpa5n9im8/1465394400000/05965452550180527952/.../0B6PIIOy_7YGzX1FLMVM5OFVUYms?e=download

http://dc510.4shared.com/download/.../coreldrawx5pt-brportatil.exe

Scan coreldraw.x5.pt-br.portatil.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.