envisioneer_10.exe

Envisioneer

Cadsoft Corporation

The application envisioneer_10.exe by Cadsoft has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Cadsoft Corp.  (signed by Cadsoft Corporation)

Product:
Envisioneer

Version:
7, 2, 0, 0

MD5:
d41008d7d5f6e4deb9ff081849e76cb6

SHA-1:
6cb73039ee9d6766d27a1d03d39d0f92365aad27

SHA-256:
55e6b530c5bdf9445a763280ca84b6a60fb63c5f9a791300e503663dc0fdae75

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/27/2024 6:54:51 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.CadsoftC (M)
16.4.18.21

File size:
3.5 MB (3,663,696 bytes)

Product version:
7, 2, 0, 0

Copyright:
Copyright 2011

Original file name:
Envisioneer.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\cadsoft\envisioneer 10\bin\envisioneer_10.exe

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
5/5/2014 8:35:29 PM

Valid to:
5/6/2015 8:35:29 PM

Subject:
E=support@cadsoft.com, CN=Cadsoft Corporation, O=Cadsoft Corporation, L=Guelph, S=ON, C=CA

Issuer:
CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121F898285F1DA8CDA095A2273DBF12F1F1

File PE Metadata
Compilation timestamp:
8/19/2014 8:03:15 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
83.82

CTPH (ssdeep):
98304:2OwuyUa2v/x8MWeFTy6cQU5rsG66QVAq5zl44Wv/6N:Fw92nuMWaCqht

Entry address:
0x144000

Entry point:
60, E8, 00, 00, 00, 00, 5D, 50, 51, 0F, CA, F7, D2, 9C, F7, D2, 0F, CA, EB, 0F, B9, EB, 0F, B8, EB, 07, B9, EB, 0F, 90, EB, 08, FD, EB, 0B, F2, EB, F5, EB, F6, F2, EB, 08, FD, EB, E9, F3, EB, E4, FC, E9, 9D, 0F, C9, 8B, CA, F7, D1, 59, 58, 50, 51, 0F, CA, F7, D2, 9C, F7, D2, 0F, CA, EB, 0F, B9, EB, 0F, B8, EB, 07, B9, EB, 0F, 90, EB, 08, FD, EB, 0B, F2, EB, F5, EB, F6, F2, EB, 08, FD, EB, E9, F3, EB, E4, FC, E9, 9D, 0F, C9, 8B, CA, F7, D1, 59, 58, 50, 51, 0F, CA, F7, D2, 9C, F7, D2, 0F, CA, EB, 0F, B9, EB...
 
[+]

Entropy:
7.2218

Packer / compiler:
ASPack v1.08.04

Code size:
808 KB (827,392 bytes)

Remove envisioneer_10.exe - Powered by Reason Core Security