home

coreldrawgraphicssuitex4installer_en.exe

InstallShield

Corel Corporation

The program is a setup application that uses the InstallShield Setup installer. The file has been seen being downloaded from download001.fshare.vn and multiple other hosts.
Publisher:
Acresso Software Inc.  (signed by Corel Corporation)

Product:
InstallShield

Description:
Setup.exe

Version:
15.0.498

MD5:
827c3816df79128d2eefbabfc2be25e6

SHA-1:
9b1232bb63cf1257c447146da8e059297fcffa35

SHA-256:
2f8e777984730bea9453306e535cc0a96fc4d3d907ac311fcdbbd13bd165fda7

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/2/2024 1:22:12 PM UTC  (today)

File size:
366.8 MB (384,656,464 bytes)

Product version:
15.0

Copyright:
Copyright (C) 2008 Acresso Software Inc. and/or InstallShield Co. Inc. All Rights Reserved.

Original file name:
Setup.exe

File type:
Executable application (Win32 EXE)

Installer:
InstallShield Setup

Language:
English (United States)

Common path:
C:\users\{user}\downloads+\corel draw 4x\coreldrawgraphicssuitex4installer_en.exe

Digital Signature
Signed by:
Corel Corporation

Authority:
VeriSign, Inc.

Valid from:
6/9/2008 3:00:00 AM

Valid to:
7/1/2009 2:59:59 AM

Subject:
CN=Corel Corporation, OU=Common Engineering Services, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Corel Corporation, L=Ottawa, S=Ontario, C=CA

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2398D3BD8A6BC144A07656DF92BBD2D0

File PE Metadata
Compilation timestamp:
5/10/2008 6:39:06 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
6291456:/ToI+aa5c7Fb8tOwGDRiLz8P04vs15l3u53YOTXfBxmTqE4Qbs2EfnF:/Toq9bUoJ0pDA5emF

Entry address:
0x21EE4

Entry point:
55, 8B, EC, 6A, FF, 68, F0, A2, 44, 00, 68, 60, 49, 42, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, FC, 92, 44, 00, 33, D2, 8A, D4, 89, 15, D0, 8B, 45, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, CC, 8B, 45, 00, C1, E1, 08, 03, CA, 89, 0D, C8, 8B, 45, 00, C1, E8, 10, A3, C4, 8B, 45, 00, 6A, 01, E8, A4, 17, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, C3, 00, 00, 00, 59, E8, 98, 14, 00, 00, 85, C0, 75, 08, 6A, 10, E8, B2, 00, 00, 00, 59, 33, F6, 89, 75...
 
[+]

Entropy:
7.9994

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
288 KB (294,912 bytes)

The file coreldrawgraphicssuitex4installer_en.exe has been discovered within the following program.

Mozilla Firefox 13.0 (x86 en-US)  by Mozilla
Firefox 13 adds and updates several features, such as an updated new tab and home tab page. The updated new tab page is a feature similar to the Speed Dial already present in Opera, Google Chrome, Apple Safari, and Windows Internet Explorer.
www.mozilla.org/firefox
12% remove it
 
Powered by Should I Remove It?

The file coreldrawgraphicssuitex4installer_en.exe has been seen being distributed by the following 8 URLs.

http://download001.fshare.vn/dl/.../iforum.vn___CorelDRAWGraphicsSuiteX4Installer_EN.exe

http://download796.mediafire.com/vpq04wdpc8wg/.../CorelDRAWGraphicsSuiteX4Installer_EN_[www.wepsoft.com].exe

http://download796.mediafire.com/dzk2a8bxk1yg/.../CorelDRAWGraphicsSuiteX4Installer_EN_[www.wepsoft.com].exe

http://download1240.mediafire.com/errs4fcr6ujg/.../CorelDRAWGraphicsSuiteX4Installer_EN_[www.wepsoft.com].exe

http://download001.fshare.vn/dl/.../iforum.vn___CorelDRAWGraphicsSuiteX4Installer_EN.exe

http://download001.fshare.vn/dl/.../iforum.vn___CorelDRAWGraphicsSuiteX4Installer_EN.exe

http://www.wunjun.com/linkOut/?l=http://www.corel.com/akdlm/6763/downloads/trials/.../CorelDRAWGraphicsSuiteX4Installer_EN.exe

http://www.corel.com/akdlm/6763/downloads/trials/.../CorelDRAWGraphicsSuiteX4Installer_EN.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.