home

3dviaplayer-installer.exe

Dassault Systemes

This is a setup and installation application. The file has been seen being downloaded from player.studio.3dvia.com.
Publisher:
Dassault Systemes  (signed and verified)

MD5:
af1a896b197bb5e278f88f6407354c45

SHA-1:
cb590b08ece4e83bc1630a2f7a8765bb303669b2

SHA-256:
e66f95e96a140d6e1978db96566fddab1643d532652e1b5d45360af83ec23ac5

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/7/2024 2:54:44 PM UTC  (today)

File size:
238.8 KB (244,544 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\3dviaplayer-installer.exe

Digital Signature
Signed by:
Dassault Systemes

Authority:
VeriSign, Inc.

Valid from:
9/23/2009 1:00:00 AM

Valid to:
12/11/2012 12:59:59 AM

Subject:
CN=Dassault Systemes, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Dassault Systemes, L=velizy, S=Yvelines, C=FR

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
15BFD69B8AD7DB7749FD559021BB7AC4

File PE Metadata
Compilation timestamp:
11/15/2011 11:41:04 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
3072:6nSr+LA4dAshsF3H/3M8vTf22W7R8gJ6wy5O6b7t3S8ODHqah1C:kSrB4dFhsJpvXkSft3EKeC

Entry address:
0x84E9

Entry point:
E8, CF, 8D, 00, 00, E9, 78, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 55, 8B, EC, 56, 33, C0, 50, 50, 50, 50, 50, 50, 50, 50, 8B, 55, 0C, 8D, 49, 00, 8A, 02, 0A, C0, 74, 09, 83, C2, 01, 0F, AB, 04, 24, EB, F1, 8B, 75, 08, 8B, FF, 8A, 06, 0A, C0, 74, 0C, 83, C6, 01, 0F, A3, 04, 24, 73, F1, 8D, 46, FF, 83, C4, 20, 5E, C9, C3, 8B, FF, 55, 8B, EC, 56, 57, 8B, 7D, 10, 8B, C7, 83, E8, 00, 0F, 84, E5, 15, 00, 00, 48, 0F, 84, CD, 15, 00, 00, 48, 0F, 84, 98, 15, 00, 00, 48, 0F, 84, 49, 15, 00...
 
[+]

Code size:
100 KB (102,400 bytes)

The file 3dviaplayer-installer.exe has been seen being distributed by the following URL.

http://player.studio.3dvia.com/3DVIAPlayer-Installer.exe

Scan 3dviaplayer-installer.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.