xara3dmaker7dl.exe

Xara3D7_trial

Xara Group Ltd

This is a setup program which is used to install the application. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.
Publisher:
Xara Group Ltd  (signed and verified)

Product:
Xara3D7_trial

Description:
Xara3D7_trial (en-US)

Version:
1.0.0.11

MD5:
c2fb5910cd6628a5dcd589206f0c2810

SHA-1:
e54fdca84a7e0381ef2ddec0bcfcb3dd842c74bf

SHA-256:
f902837dae1f55d734f23a7fc89543785494ea694a1a29ecab04099b45cb4c7d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/25/2024 9:24:18 PM UTC  (today)

File size:
3.7 MB (3,833,408 bytes)

Product version:
1.0.0.11

Copyright:
Copyright © Xara Group Ltd

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\xara3dmaker7dl.exe

Digital Signature
Signed by:

Authority:
Thawte, Inc.

Valid from:
9/17/2010 3:00:00 AM

Valid to:
9/17/2011 2:59:59 AM

Subject:
CN=Xara Group Ltd, OU=SECURE APPLICATION DEVELOPMENT, O=Xara Group Ltd, L=Hemel Hempstead, S=Herts, C=GB

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
74043B9300AA596F8365A2737B7CEFAC

File PE Metadata
Compilation timestamp:
9/8/2010 6:27:01 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
98304:KhzshwxmnxELCfE+LJxsqtmeFQGrw7iyy/WO3k:KhzOx6MEI7btmemGrw8/Wik

Entry address:
0x3310B

Entry point:
E8, 94, 83, 00, 00, E9, 17, FE, FF, FF, 3B, 0D, 70, 16, 48, 00, 75, 02, F3, C3, E9, 14, 84, 00, 00, 51, C7, 01, BC, FE, 46, 00, E8, 0C, 85, 00, 00, 59, C3, 56, 8B, F1, E8, EA, FF, FF, FF, F6, 44, 24, 08, 01, 74, 07, 56, E8, 81, 44, FE, FF, 59, 8B, C6, 5E, C2, 04, 00, 8B, 44, 24, 04, 83, C1, 09, 51, 83, C0, 09, 50, E8, 51, 85, 00, 00, F7, D8, 59, 1B, C0, 59, 40, C2, 04, 00, 8B, C1, 83, 60, 04, 00, 83, 60, 08, 00, C7, 00, C4, FE, 46, 00, C3, 53, 8B, 5C, 24, 08, 56, 57, 8B, F9, C7, 07, C4, FE, 46, 00, 8B, 03...
 
[+]

Entropy:
7.8083  (probably packed)

Code size:
416 KB (425,984 bytes)

The file xara3dmaker7dl.exe has been seen being distributed by the following 50 URLs.

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_en&type=PROGRAM&Expires=1465267948&Signature=C0ptuv15CKniQffLOFfrpm0G6GNr3QBAJxG~vKm3mdw5oH-laCoZxQHcpn0IPxpL0HGRwvrM-tm4haLdZyItUKZzYUcuJH0f-pGwEs0zPdaWOOYTZZ-XwvZGLSa-U2ElkFf3cB0hNzfi5Z8sjjnTwZUOfylCAmYn6JdXl9iFzYU_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_es&type=PROGRAM&Expires=1445151497&Signature=bRA5fqNiERkH~qwXBmGeikLLaWOKUJtLh3KRvISknDOcnoqnTcXOK9k7RGgzjJwEO8Al45J0jZBzjf3Rhq1B5nErFygM74WgxaylTk3DhVc08e2SgDkw34v3Pu8fO0mhW7B~O~G506srxo5YW8U9A0BLWeQCNE1eYAuZI015iYo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_es&type=PROGRAM&Expires=1484194296&Signature=CEGD-asJeOkbZkzlV3FFbz~ViMie3uMR-4X3TVavwSA6g2DcaR09HsTxbmKxWsfCUWVSnp1Ssljlg3bpjuhmdmD8f9Sm9QTWFLwt3OmDGG4klBGtTnuLEjBdJoE-tvel7a7Gep~BojAzaYTHjCyBgTYUPdDuvdTiRNF6exH~qJY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_es&type=PROGRAM&Expires=1479395029&Signature=fBpRtmh1VOtAfqAEShbwosu9LViF-8DSh3pExrpO8TL~pI0Hxq2MctgLn27uBzMK0alpehfSp9FgYdCEvpzcZZlXDXCBdiOho~Of6aXV3L34~01Xuj1QI3DBxqAw195WaQcGnh2S9FajdPZNDlWpjBdD6CRJAD2c7yWu4AztQi4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_en&type=PROGRAM&Expires=1483772600&Signature=dTrBGlefUcX3PCVirUVye~bx6VfMH1czIvy93o8bMWlPo8pONnGNIS3W398Q4oxjRQieh6khHjghV-SA~3-UzLC~OXJ3dc8RReX7wpLMxf3GZbFA1nrZuDwtg45bmy-mFzRx~g5zo-HbMX4o9qlBsU72rVGka2PuJyJHoV1iBV4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_es&type=PROGRAM&Expires=1479547265&Signature=efTqR6PSsqI1s9rSItHP8bl3KQ2j2MagIUlbP3wxN9ovleBuzVpr1SyuIkVsS01h~x7LhDWMOuB6-PNS-EBDkv5gIzgrSBSA-7WGKXGk7bB8sdUgCBLlyBsbicmBI-zT~DTTx4-eRL1Hg5WmbwC059GMVWwzyFSJSuRCgmnmeus_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://www.tamindir.com/indir/MjAxNy0wMS0yMiAxMDowNjoyMw==/xara-3d-maker/windows/.../

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_fr&type=PROGRAM&Expires=1481014661&Signature=JolZucbCobkcPyqihZJ-imkdNo9M1u1u5kYsbtkYvHXzWThcC3V~WdgGajF55yh2BUYrXbx~HOyNjRyn4dAEhzgpNBVStOa57ZWgQcM9HLTRGNeLfxr18e1b2Q~ObVwzGNVQ0L7ER~d6LTbGYw54RvvF9cSvctimgttER-NlMxY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_es&type=PROGRAM&Expires=1479577828&Signature=f8D3Ven5SEdH~kz5DMEK5Rm~0UOcmSJ9grOm7ZHdpZ1xQmisCMCcN-1M4fqIYMdcP1PPtWskoBOL64QIvLOdDcwgPBKc~LD-k5uy-xpdVHQr0U3Kta2Q-kdMyhtyJQkQ~NUgOE6~Ct9sUxrY5yZ4gpI2tXI1Oy~yTkckfboVetY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://www.tamindir.com/indir/MjAxNy0wMS0xMCAwMjowNjoyNA==/xara-3d-maker/windows/.../

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_es&type=PROGRAM&Expires=1468999142&Signature=Jm-HmIF0kiNkuJaOMS~knDq47DH42LTWf3~ThxV08s9nvAffhBZr~-rF9ln8m5POhZuDNK84dv-sSiPlZ5k-2Du8gliCE2vai98WXINy4G6hKz1Lvu~prf2DSTAAbbEFRdP94Rs-aDcEnyAurBXGR1Dpn3ydaKDZvTymFt6F1js_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_en&type=PROGRAM&Expires=1463973388&Signature=VADL73kk1cdVwkE7yxJNbMpgc2Ug8KbCRdHiWJI~E66D8QA-Xp0XT8af7ZNlOGT~6BZuRErVQiIEQtywN9SLY2c7~l3p2PLWsY7g5lvOxmrrhx7xR6OxtnWrXI06w-r92ylWCPysodvMdTlePH2Ep5WqAoC9rfSTbIiJzu21K30_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_es&type=PROGRAM&Expires=1481704590&Signature=KjqsGv12i02nWZ6e-Ib3tlALcfzp6nyH2zp2bC90O-~V7ak4OML4IrMDh5n6ftwqFfa1X6GujbnG7ge8zyvpUYbqMOr~6n4f05XoKNruGXyh0iViBMPdyzgSaJiT0vx8Re8TiWnbjP~PLV6xCoOQtkrc326AeSE3xJghoDjZTHw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_es&type=PROGRAM&Expires=1468235245&Signature=I-DHnqdbBCWJwYWysL~V-AnhajMNXrG7w7hB13EuCswDMWqdVVcsXM04~Xk1lQSy0iPOhv2yAAjX1sxye80obT4j87deNnapR2LEAZzH5HFAlrgu5V9brw1zry818yQF71UmguTaj8HhC2KmFy2cQBb2FNjXqXS7Oxf4H7pDC~s_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_en&type=PROGRAM&Expires=1465460870&Signature=Ov1cfQA8j78d-actEXd3~WB1VDtxEgBw8iW92Zebss6aDzRAQVSpU5oKUVVJHjOQQo2V-Am9tBKaxg1RCJpbBBEXhQhy9Ny6YNEkI9-AQZo6BmSIOok8mZrmeE5PyWPp6mrflZ-FQW7QHA9Y7f7x8y-O8I9o2~Z2KAKkuLuDuOc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_es&type=PROGRAM&Expires=1479388465&Signature=Al7rGPC~D9oJp~AAIjgsy4I8FoPZTaVu8nJ3JEclsmlZEhBkXOcHMzesqeUWfRin3v56ETecafaa8sOVsYprzP6X7PIASrACUDfG7lsQkTD~Ufth-wvDBd3ZSVsM7LSq4P~dJrp09IUF1X0vpdxgrwMm-NMNywlmRHBVOoaEs-s_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_es&type=PROGRAM&Expires=1477736733&Signature=PYNdoqi-49Cn88SPTv9OjyjO~2~Ufdo2l13dZIYDxBFjgeod8vJ7SA5PGmCYvUxalI5dhoT953ocSLegvwp8stgkl2yvh2-vmnyfU-xxR~cBLhiON4flVo3Rzuhmac~ZDvkPEkNmWMXXoYtqtVVrsm6KlHOwnlGmv5ETokceKac_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_es&type=PROGRAM&Expires=1459410108&Signature=Klx9EV6t~-5zap9MJJyed45jvEYDk7JtYvuO6BB-TolJyG7l7xzm37PG4BoKmNB7GfRWToEieIl6YQdjDq4SpGllFvAofSOSCjNmQL5alFZBVpJO~C3I83b4Rn~D9GSB1HZrlFk97PdgLA7shCzwqBt1wpS7-pV0~xHMSYrSjLs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_es&type=PROGRAM&Expires=1478311138&Signature=MM9aF~lOcMDnMgGsVRR~j0mhYMdCr3nr8OxUFqsH1WWe~gku-rYlTD1jKFbvxJmy~tvySLcPViNxiofEQmJheI9UxjykULxw3g4lqujZXX5lJyAj2m52E0yEj5idstdG~dYx~A7YBYDOPm7kSR7nnvi4wK~1haeJzs0w9pce-t0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_en&type=PROGRAM&Expires=1449394442&Signature=FegY-tsRC9syX9tDAPOe-~rky~lBAeygEAU2HBctc2wiMijdI6meGn0UheyKwhvebhYVmUjvvkYzGYkD5fpQOxHkiE9gtEfO5NvuGXpwcmKiAIt~Nl5EN9-9~7TVR3PU1tdrDmnjAyUNdycOp7etSGsI5Ec8ELaRmJvMl6Bl1jM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_es&type=PROGRAM&Expires=1474378267&Signature=PjLFq0~OFV3~0Z7gi2UHdCNHbK34-hJ6iU0ZfwEZt854capsWEyQakAXQOiiGcvffjtgB6g8qBFB7n~Net9~3qJhDzExvnjEPoXqHHkpvdYfFRo3cVcE0G7Xe51ydih-iIn2t1vveZn4bQd~hQvyac8FMkhYz6gb8TQH0qm3aFo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_es&type=PROGRAM&Expires=1477383079&Signature=Oy5SHXDwYfUIVjjJqt-gWI9vcClj7SyPytZFQtTcgnUdiJqhw5qg0btycXy1FWIMfjtRcWcNDi742-GIKYfTwqTJizzp01RI8ngUq5AwEAsqd67BIPX7QTUJ0hSeUgpdJ52XZF9L8PGZwC02KK6nCaz2J6D4NCDSy0ZPAChoWuw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://dl03.magix.net/x3dm7_en.exe

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_es&type=PROGRAM&Expires=1469525479&Signature=DTZPjcv-oxdE3ZX0Eml8eIjbdTNuC1tli5Jc~U7CODATQKm8g8CZqagy86ROX-hV1Yn0~0kwnzJga70YmnGGtSS47WLOX4De-jbaukOmdfMcv24vqtQDHWhPrEBWn4wurdXjXnSSfA5hpsyVRqVmKokDjf9BTMtY71V3~cdkj~8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_es&type=PROGRAM&Expires=1480830409&Signature=iWSSa-ZQ6B~A4tNzf4dos0eFnqlFhSu--Di-mzLTSWyZDMBy7wAKH9gJk8A3RclP92UXYzvcD-ngjoag2Bc~sjAsHsG~vPdBrPw2fZMQELGq1SEP71dp-DHAIWqHrVe-rhy9OR3CAVnjtqjJdzU0R0hmvqUbY-N7SW1cBuESaVE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://www.tamindir.com/indir/MjAxNi0xMi0xNCAxNToyMTowMw==/xara-3d-maker/windows/.../

http://www.tamindir.com/indir/MjAxNi0wNC0yMCAxMDoyOToyNw==/xara-3d-maker/windows/.../

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_es&type=PROGRAM&Expires=1447557570&Signature=W1zvKWS-auib2lHtLnx7ixvvjaV~kb2pzaCRuim9TA51yz55vgPNwV5N1DUaSSm6gDaIeTVjj7bEKVwIcTrfyRFSvmO37L3vwF-u02stWPVGsHExsIPQs1bZk-eI4msLVuRgn1GMMToErMFsL9is-QDPTPrQ-rt5vujeqNEARCw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

http://gsf-cf.softonic.com/e54/fdc/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4357&instance=softonic_es&type=PROGRAM&Expires=1475904602&Signature=A~EPs~UsSNPhWnhsKmu~0T3~HtzqyNhaiKSix0Q1JjvdGKn1Zpx0KV-~j7Wyk7Cmb~~tKwi2ARGkEMsyzPfjHfavZromRrru5mR9Q1P6So9M1bD6ECE7ySFRbb5lDMDfFDFZwumFp2kA8akAjdKvYdGgcW7IkTvr3iyvRkw9I8E_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=xara3dmaker7dl.exe

https://xara3d.softonic.com/.../trmsvRChbxdrflJq3ZIylWv B6Q8 mgpLNhZYPVoOQv5RcrSRFs9QChqYHscfTnJ8Nf7zb0tcKUTZ58gAAzZ0agQYjI7GXqO9CsG4WNpKWSLPaKaLUskSt0Ou2ZnDn7RYcj6zD3GhhTCHNnThJM1HfA=

Latest 30 of 95 download URLs

Scan xara3dmaker7dl.exe - Powered by Reason Core Security