home

zus_rund_dm5000.exe

eDrawings 2009

Dassault Systèmes SolidWorks Corp.

This is a setup program which is used to install the application. The file has been seen being downloaded from pooldoktor.at and multiple other hosts.
Publisher:
Dassault Systèmes SolidWorks Corp.

Product:
eDrawings 2009

Description:
EModelSelfExtracter Module

Version:
14.5.0.0008

MD5:
3d5022d45030606bc9d879650086beff

SHA-1:
2736199359124bd3cbcf56393d38b7c8b610bafb

SHA-256:
3002c94b02e1caee93aff8f01ec2ce2c54be56abe8c8d9277c1f67f846a5d180

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/8/2024 12:24:37 PM UTC  (today)

File size:
7.6 MB (8,012,096 bytes)

Product version:
14.5.0.0008

Copyright:
Copyright © 2008 Dassault Systèmes SolidWorks Corp.

Original file name:
EModelSelfExtracter.DLL

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\zus_rund_dm5000.exe

File PE Metadata
Compilation timestamp:
9/16/2014 2:19:33 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
196608:SGHc/bvIT1+bdJ53rq4R7eFm9gzfHwc8kM29QlDEu5T7P:PHc/bUM/hvR7ebbHfMBT7P

Entry address:
0x6771

Entry point:
E8, EF, 1E, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 51, 83, 65, FC, 00, 56, 8D, 45, FC, 50, FF, 75, 0C, FF, 75, 08, E8, 6B, 1F, 00, 00, 8B, F0, 83, C4, 0C, 85, F6, 75, 18, 39, 45, FC, 74, 13, E8, F5, 02, 00, 00, 85, C0, 74, 0A, E8, EC, 02, 00, 00, 8B, 4D, FC, 89, 08, 8B, C6, 5E, C9, C3, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, B8, 2E, 41, 00, 89, 0D, B4, 2E, 41, 00, 89, 15, B0, 2E, 41, 00, 89, 1D, AC, 2E, 41, 00, 89, 35, A8, 2E, 41, 00, 89, 3D, A4, 2E, 41, 00, 66, 8C, 15, D0, 2E, 41, 00, 66...
 
[+]

Code size:
45.5 KB (46,592 bytes)

The file zus_rund_dm5000.exe has been seen being distributed by the following 2 URLs.

http://pooldoktor.at/images/anleitungen/.../Zus_Rund_DM5000.exe

http://www.pooldoktor.at/images/anleitungen/.../Zus_Rund_DM5000.exe

Scan zus_rund_dm5000.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.