home

CorelDrw.exe

Corel Graphics Applications

Corel Corporation

Publisher:
Corel Corporation  (signed and verified)

Product:
Corel Graphics Applications

Description:
CorelDRAW(R)

Version:
15.0.0.486

MD5:
4837cf2ef72a4dcf4a3260dd5a91a104

SHA-1:
737ab753c016cde90a58baf04d06d17edff0f879

SHA-256:
54264333a3e1db31969e1444b8d51cabc005809c8fa1a196c4e163541fedce81

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/26/2024 8:52:54 AM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Sality
160213-1

File size:
213.9 KB (218,984 bytes)

Product version:
15.0.0.486

Copyright:
Copyright(c) 2010 Corel Corporation

Trademarks:
Corel, CorelDRAW, Corel DESIGNER, Corel R.A.V.E., Corel PHOTO-PAINT, CorelTRACE and Corel CAPTURE are trademarks or registered trademarks of Corel Cor

Original file name:
CorelDrw.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\corel\coreldraw graphics suite x5\programs\coreldrw.exe

Digital Signature
Signed by:
Corel Corporation

Authority:
VeriSign, Inc.

Valid from:
6/17/2009 7:00:00 AM

Valid to:
7/1/2010 6:59:59 AM

Subject:
CN=Corel Corporation, OU=Common Engineering Services, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Corel Corporation, L=Ottawa, S=Ontario, C=CA

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
0B0308C3C672DA433819F1A8CA00F8C9

File PE Metadata
Compilation timestamp:
1/26/2010 11:28:09 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
3072:yH4Yy/ibY2SsEbVu5DovZp+TPcw+B9FVOF30sVfEzxVn7DgbACr54zb:qbY2obo/P6B9fOFsnnobFrub

Entry address:
0x1385E

Entry point:
E8, 20, 06, 00, 00, E9, 37, FD, FF, FF, FF, 25, 08, 62, 41, 00, FF, 25, 14, 62, 41, 00, 3B, 0D, 30, D9, 41, 00, 75, 02, F3, C3, E9, 96, 06, 00, 00, CC, FF, 25, 1C, 62, 41, 00, FF, 25, 20, 62, 41, 00, 8B, FF, 55, 8B, EC, FF, 75, 14, FF, 75, 10, FF, 75, 0C, FF, 75, 08, 68, 74, 38, 41, 00, 68, 30, D9, 41, 00, E8, 70, 07, 00, 00, 83, C4, 18, 5D, C3, 6A, 14, 68, F0, AB, 41, 00, E8, 3B, 05, 00, 00, FF, 35, E0, F0, 41, 00, 8B, 35, D4, 62, 41, 00, FF, D6, 59, 89, 45, E4, 83, F8, FF, 75, 0C, FF, 75, 08, FF, 15, D0...
 
[+]

Entropy:
6.7982

Code size:
83.5 KB (85,504 bytes)

Automation Object
CLSID:
{7C0B0001-3868-4EDF-A3D8-D8AF05B9DFC0}

CLSID name:
CorelDRAW.Application.15


Scan CorelDrw.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.