totalmediatheatre6_retail_tbyb_all.exe

TotalMedia Theatre 6

ArcSoft, Inc.

The program is a setup application that uses the InstallShield Setup installer. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.
Publisher:
ArcSoft   (signed by ArcSoft, Inc.)

Product:
TotalMedia Theatre 6

Description:
Setup Launcher

Version:
6.5.1.150

MD5:
d9133581cafc2f30103029b012c16746

SHA-1:
2367b3b1f6114be34fa3822584a0b22608cc5cd6

SHA-256:
ac86dec0b29160c5d97058768b7f50bb14df791eaeb45597f6b4c20ec5476064

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 10:54:07 AM UTC  (today)

File size:
99.3 MB (104,071,200 bytes)

Product version:
6.5.1.150

Copyright:
Copyright (C) 2008 Acresso Software Inc. and/or InstallShield Co. Inc. All Rights Reserved.

Original file name:
Setup.exe

File type:
Executable application (Win32 EXE)

Installer:
InstallShield Setup

Language:
English (United States)

Common path:
C:\users\{user}\downloads\arcsoft totalmedia theatre 6.5.1.150 final [chingliu]\totalmediatheatre6_retail_tbyb_all.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
7/14/2013 7:00:00 PM

Valid to:
9/12/2016 6:59:59 PM

Subject:
CN="ArcSoft, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="ArcSoft, Inc.", L=Fremont, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
5D46DF28FFD5D72146CE214B01DA7E33

File PE Metadata
Compilation timestamp:
9/11/2008 12:55:59 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
1572864:d632tp73+qJfNmOCykKBfP9pT/A4INy49WC0GKa8M2CpmfovAWQFNIR4B5ZT3Gs4:d6mP+q5VCpKhlpbAR97pOjkGrZT3fFWv

Entry address:
0x36327

Entry point:
55, 8B, EC, 6A, FF, 68, 08, AD, 46, 00, 68, 48, A1, 43, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, 74, 91, 46, 00, 33, D2, 8A, D4, 89, 15, C4, 5F, 48, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, C0, 5F, 48, 00, C1, E1, 08, 03, CA, 89, 0D, BC, 5F, 48, 00, C1, E8, 10, A3, B8, 5F, 48, 00, 6A, 01, E8, 4E, 24, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, C3, 00, 00, 00, 59, E8, 65, 0D, 00, 00, 85, C0, 75, 08, 6A, 10, E8, B2, 00, 00, 00, 59, 33, F6, 89, 75...
 
[+]

Entropy:
7.9997

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
416 KB (425,984 bytes)

The file totalmediatheatre6_retail_tbyb_all.exe has been seen being distributed by the following 40 URLs.

http://gsf-cf.softonic.com/236/7b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92616&instance=softonic_es&type=PROGRAM&Expires=1473373159&Signature=dUadRlrVH0UkIRHzWgyTjq6cmfTpp-vdED~yhoosMnK-wzm9ucX21bdMCnOduUwdyF8a0Nz9OIASa~-6vPcn3NE0S-eB1mK80zr6VqjPhfY8yTP6vfR9-nXkADf1hN5g6j9nuxz3j7uErJ0UMMqVXn9bmiPX-Mu1Ll3AeF23Xjs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=totalmediatheatre6_retail_tbyb_all.exe

http://gsf-cf.softonic.com/236/7b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92616&instance=softonic_es&type=PROGRAM&Expires=1481498285&Signature=RQV3ZlJxOJSsclp9VkLdi6gtU683vn-8rw1QNP2~LNsl7kwlJ-bEMCHIU29rVVJvkb6QVnwfqIT8tZmHgkmX~Bfl5nSHyvnbzx5n9YxDnSGXwZuOiD-3f4Vh2kcoqcD58vsXxTL1JErTFj8hHzJEQzg77HZ67NeQNbtEW0NuGIg_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=totalmediatheatre6_retail_tbyb_all.exe

http://gsf-cf.softonic.com/236/7b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92616&instance=softonic_en&type=PROGRAM&Expires=1486722405&Signature=cBebyQa5Yt-TgyZzzz5mOzy0tWxeTA1RQnCpZxiagCilrFLEZutGzOQVacBwUkiLTVPXAuk39yO-ZsgYuihaltAhqOK9m4FoUbvDWipJGT0A8IJ97Opd6TH-R7ZOgsY0qfuU3rdXkCpCnX1n49p2ywgqbw4TO2WRCVx1ZbZ1TXs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=totalmediatheatre6_retail_tbyb_all.exe

http://gsf-cf.softonic.com/236/7b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92616&instance=softonic_es&type=PROGRAM&Expires=1475328068&Signature=WsGNZuKcDPiXrxA1QcwkbwnAqLDxeGZvvBxJxXfkoHBUOC9510EqkclsMNsN76LjRRnXbf0M1uqwnSmnwJj4V6JdSBUEvP2EiWY0fE36SnR~T40EC7Pnz8Hh6c7U1fIVS5uI8xJUUtgD6ttH1G0dgCq-Bzt4OzxOgQ1iRdIF064_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=totalmediatheatre6_retail_tbyb_all.exe

http://dl.cdn.chip.de/downloads/.../totalmediatheatre65_retail_tbyb_all.exe

http://gsf-cf.softonic.com/236/7b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92616&instance=softonic_es&type=PROGRAM&Expires=1447988251&Signature=IaLdtsrnet0R7tmlSOayvVBFWipamPtlmuM4TGamVW0Ky2beM2kXlQI41DkNbeYARDkItslb6xHVLlKQK~XEdg78Mfz5uNt9-6F97TPSEEYKITxvSKs4F~dZYUN~ANWfoJ8hzT~qdvf1qO14QLhHvCfgxUtWIPK6eWr8yLsGuUo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=totalmediatheatre6_retail_tbyb_all.exe

http://global-shared-files-l3.softonic.com/236/7b3/.../file?nvb=20150114142436&nva=20150115022536&token=029d59316138f6cc6fe16&SD_used=0&channel=WEB&fdh=no&id_file=92616&instance=softonic_en&type=PROGRAM&filename=totalmediatheatre6_retail_tbyb_all.exe

http://gsf-cf.softonic.com/236/7b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92616&instance=softonic_en&type=PROGRAM&Expires=1441453297&Signature=fDprvBvjyCRElIASL7QNUfBZHlMnDm1ULxXZ6h3UImtjwP~3Ir0bjmvNn2agBO3K1S1FptRRpgO7LZvusnOi6X7HALcoK8DzdeK19iKQfgVj8-yFCv0LzJOabJPxWwf4iQaoY4KHnp17oSI92X0wfxylH1AGNj~ipwYoQjFEvoI_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=totalmediatheatre6_retail_tbyb_all.exe

http://gsf-cf.softonic.com/236/7b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92616&instance=softonic_en&type=PROGRAM&Expires=1476992703&Signature=fCcNStlwZkxXxHwR0Gk-QaqElpOieht9dxM7ZSVM2x~yu5bL~8nIFQdrpH40vaccTA9QlVb5OzhZLKbrWiC3CXmRyZw~iz8fKK~RmCD5H6yAu4azXWT0NgXkL9dan2wJFIKGZVHMiGHnFu4uVyIOV2laFHor7gs8rBHv~2We448_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=totalmediatheatre6_retail_tbyb_all.exe

http://gsf-cf.softonic.com/236/7b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92616&instance=softonic_en&type=PROGRAM&Expires=1452147530&Signature=TDZNpuAEc7Q6hMrUEE6WGg~2uFz5QKq7eUywK8WzNGK14HSt~f1kLvOAKrnrzHZK5nn7BWbHXORtIvnOmWS1OVsv5weBUH1RCiDJiGm6-UOssPQyRGJ~9pTu7Whzwyx4Bp0DL2feEhefh869nl~ct3uwgI1o7LaXvlA-hiBilQc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=totalmediatheatre6_retail_tbyb_all.exe

http://gsf-cf.softonic.com/236/7b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92616&instance=softonic_es&type=PROGRAM&Expires=1477735540&Signature=WAwvLoN16VFDzhn-PElti0SjMFG0l2NHYIo1BbCzpiWHRu3gIJVYdw4HQAAZrSPVdGOSs4EyUnIk5D~cTptGfW8rHHpgAHfMEoFL33FHnfVFbNqx3CiXBbWIiNQFEegAjpdVhH-SJ1EMCfCATSmNPIbMZjWonEdDWwvSOqoOGV0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=totalmediatheatre6_retail_tbyb_all.exe

http://gsf-cf.softonic.com/236/7b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92616&instance=softonic_en&type=PROGRAM&Expires=1431465880&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=gX07Sap50jsT25XHgJSjyYCySbFQ2~wVc9An3XS8YSV7~zQiPF3qaA6bg1WKWF5-AqQ2J4RdYNmkiLVw~Atlq1QfCKRImbAzkPA~r8VxJJ395vHAALuTT3QKhKjJjPE70g5wRAJsVNRswuS9ezsAFn4SwntrsS6N95t9dXiUMsY_&filename=totalmediatheatre6_retail_tbyb_all.exe

http://gsf-cf.softonic.com/236/7b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92616&instance=softonic_es&type=PROGRAM&Expires=1470560573&Signature=cwUsrZ~BcohMQm2Z2CuZq6fycHmw6zyU9cwYwNfr412zFXiR~nRAnNmXYC3yfh74MN6c~odTXInABDWDiA7OXCttJr9GbsTSzWc40vJFktcBPX4Fw~bCMzz4drTlZUiyiQzwdgbXAXBeF0Jsu3uhEMdEXftB1R9AHpak3D-sTXU_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=totalmediatheatre6_retail_tbyb_all.exe

http://gsf-cf.softonic.com/236/7b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92616&instance=softonic_en&type=PROGRAM&Expires=1477204967&Signature=dDkYtjBv76keoor6SbK6luJqbESYUcmgbmzC17vos8jqNa4RaBFaH-QYgEZhXIXX5clWjy7u11TOX19lhMdpGWmzH1QIQaJQyKutCRzQK67xo6cYwrBC-TPs~Y-tOQNZO7S3q~tmuuJ8HI2jJHiQLmuo-GJUxxjG8Iv5Nx1bk2g_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=totalmediatheatre6_retail_tbyb_all.exe

http://gsf-cf.softonic.com/236/7b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92616&instance=softonic_es&type=PROGRAM&Expires=1455534205&Signature=FLJCsjYrYKSL3S7JMRcAckvdzUJH9I7oqP-isr02OVOLbXVHe7v3VvjM-AVByEFWNy0AtXv41fPb-Oyd4HxXMmx6fv0q3ps9LQ2fOEfYUCdY9WWN~k2nZ0ji94hDuMgaoDyx6bRNb9ufci8CNw21wEqZsBRdTni1eC-kV8651oc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=totalmediatheatre6_retail_tbyb_all.exe

http://gsf-cf.softonic.com/236/7b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92616&instance=softonic_en&type=PROGRAM&Expires=1465536461&Signature=HDRLOGEZSa9Pt6rsqBVFgyEp7gcTxPISd38tcHEmFpur98Ygq~evkZIVBg7WIGaO8tOMMYQQHMss1FO3tMNKCGUStGzJR38-rHTcFcUuyEVY-3wxUYhTmLMv96HfKhFQrmeyjuNyqno~oagRJqzOpx-25J0N4SUQxEV3OdWPbVo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=totalmediatheatre6_retail_tbyb_all.exe

http://global-shared-files-lw.softonic.com/236/7b3/.../totalmediatheatre6_retail_tbyb_all.exe

http://gsf-cf.softonic.com/236/7b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92616&instance=softonic_es&type=PROGRAM&Expires=1438824098&Signature=dAeeH8rLN9Z11bA8zagghzOtld3VviP1eUCQ4H2Tzqh5~O7-WPPVg0DBsWtOm4UHTo0PFspgRCc~FtwCelXrXwaTv3gAzV7tQvpKS3NihgYPGZocFhEdrn6D16~T89Ah6NAxPYyBcYDtOhqEoiQaS7fVemBH-p-AVZFQUpPWspk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=totalmediatheatre6_retail_tbyb_all.exe

http://gsf-cf.softonic.com/236/7b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92616&instance=softonic_en&type=PROGRAM&Expires=1445834091&Signature=IIXyI~3lEWhqcz45~x-jviyA-~Hh7yIufFQa3BCRnDUWisE--6O5omp6-3qCS~i~wCKryPBfw-EN3d6ich6NpojxsH7~r2Rn79A48ehMy3okE-8qe3EeCySQeXOrpj1cvCnCgeBl17Z3VfZHoPpqqRGdy8yRj~-NtpqZ9zosmDk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=totalmediatheatre6_retail_tbyb_all.exe

http://gsf-cf.softonic.com/236/7b3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92616&instance=softonic_it&type=PROGRAM&Expires=1455277432&Signature=KWys~jD~aAFsN6~bf6jkxkYzAvtzrTvzuUHaCAEqPlAcFKFF0Ulm73s5GYnIVWPunVAUH74ggwE1bG-JgrY8nSrC0DxMtu3qkfp-0bMfYXtcdNjck2LoRza21eGynpY5lPTK2RoDHpLcja4HGiFbScRKGjEXYwwWx30PoLjFqZQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=totalmediatheatre6_retail_tbyb_all.exe

Latest 30 of 40 download URLs

Scan totalmediatheatre6_retail_tbyb_all.exe - Powered by Reason Core Security