home

DPSetup.exe

Avery DesignPro 5

Avery Dennison Corporation

This is a setup and installation application. This file is installed with the program DesignPro 5. The file has been seen being downloaded from www.vaultcapitalpackage.com and multiple other hosts.
Publisher:
Avery Dennison Corporation  (signed and verified)

Product:
Avery ® DesignPro ® 5

Description:
Avery DesignPro 5.5

Version:
5.5.708.0

MD5:
65f1a9fee9f6e86146782b4961e36144

SHA-1:
8cbbb6b822a0217900f9ae7b14ecd23b19a37d73

SHA-256:
ce62c4fdee873ad13dd9202c84e766d2cfaf0a8f7629c5dafabd29dd2855c7a6

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/25/2024 1:01:41 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Bundled.Toolbar.Ask (variant)
8.8954

File size:
88.1 MB (92,400,672 bytes)

Product version:
5.5.708.0

Copyright:
(C) Copyright Avery Dennison Corp. 1999-2010 All rights reserved.

Original file name:
DPSetup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\dpsetup.exe

Digital Signature
Signed by:
Avery Dennison Corporation

Authority:
VeriSign, Inc.

Valid from:
11/22/2009 7:00:00 PM

Valid to:
11/24/2012 6:59:59 PM

Subject:
CN=Avery Dennison Corporation, OU=Software Development, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Avery Dennison Corporation, L=Brea, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
17C9BDE7754654A9D95D8E104D3EB750

File PE Metadata
Compilation timestamp:
5/18/2010 12:39:19 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
1572864:+wszX9dnVhNDTNiPB4k2ZDcdXSSfqgT6f3FUZkKeaNjs5PKv+LB7yJu:+lz7rN/0PBccdXSSfqbFY68iKGNj

Entry address:
0x2CB3C

Entry point:
E8, 15, C6, 00, 00, E9, 78, FE, FF, FF, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, 10, 06, 45, 00, 33, C5, 50, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00, 00, C3, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, 10, 06, 45, 00, 33, C5, 50, 89, 65, F0, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00, 00, C3, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B...
 
[+]

Entropy:
7.9988  (probably packed)

Code size:
253.5 KB (259,584 bytes)

The file DPSetup.exe has been discovered within the following program.

DesignPro 5  by Avery
Publisher's description - “DesignPro gives you the most flexibility while designing and printing Avery labels, business cards, dividers, t-shirt transfers, greeting cards and more.”
www.avery.com/avery/en_us/Templates-&-Software/Avery-DesignPro-for-PC.htm
About 2% of users remove it
 
Powered by Should I Remove It?

The file DPSetup.exe has been seen being distributed by the following 10 URLs.

http://www.vaultcapitalpackage.com/Y0AZfiBUnyKvCZVxSWahbp2lNj2_zeGSoDrLL6Iqo ahgRtquinvtFt0DDZsTzcbFQVxEfKCct_XNLAELVbJVnoKchbcDVwXl2UkzRT4bLGELTCuHTHY4dxvSfWSf tbKR_bNj9pdS6K5hX5q35rEw1pbM5gx ZzoHBYJY2wIfKT573LXlx2mfQxSMrNKtSlBkv4gze40WVTtpYtM9mxRD036Jh4hQ==-G0gAAMTaOa2GyS2LrL60S7psn_Af4JAD9rYSOWAgFlOMASc0Nex7jVV u3N_DD6V ABFQG12cPieEXIU2ESSymsr8hE=

http://www.ranchsendgift.com/2e181clSxlqI7pwkxVZ6IwanyD78APH_QCd GYK15U2Yu0GqY29fn 7EJ LGwL_wfbwyrh945kEGPcgPBXMRl46y0Dz7HEHzrQH16Pp7o9RcdQZXL 6iDoivgASEDuWwRKUC0n1yAKYUDgjkqdyUer2sM0khMB9RuydPqsfdFRHMBP1SGNerS4eUwvKQtD3et2IzTKX R8d8vDWFbvnFZ8LkTQ0rMA==-G0gAAMTaOa2GyS2LrL60S7psn_Af4JAD9rYSOWAgFlOMASc0Nex7jVV u3N_DD6V ABFQG12cPieEXIU2ESSymsr8hE=

https://www.dropbox.com/s/.../DPSetup.exe

http://www.ranchsendgift.com/uLCN_b9r 4NmVKHUPJBsgnRjRWm1shQMrFuCy0e1f3ZtK1t4Of4BlRRCFlKWGYY1ZjQuc3eIo_U8BGPBIoR5su0goKcTocRwIWkXBJgC2mjFPhIxbay9RImgVTDRzfvxzDhvOsL6S_6t97eSWLtMxF6xjL2kTHdRQU2oXpJl1Z6asVsv_2ZLSbN7QcT12ZaAN9sBIqk45bipi1r7taNWLKiU HZvXQ==-G0gAAMTaOa2GyS2LrL60S7psn_Af4JAD9rYSOWAgFlOMASc0Nex7jVV u3N_DD6V ABFQG12cPieEXIU2ESSymsr8hE=

http://www.ranchsendgift.com/ksPfHL7koGKzU_K27Kl2FGuuH6M_1Npainv9zDmG7hZuNxFeH4ws_OvqgvBT5lPi d3Ao0cD_Gs1r1rYrnGmFMFSWjzq0skoZjJ1YpHl2Vmu4v2pbY_Zvk nlfHzrBl2QEdwMzICVH8rfBPAHMnnpz394Eo2bvY9bLCXTsFhfu 0tLdDjAXTFD0t5iKqA9eTTPOawfGDTjXS_ZjIFV8II0 L9DIBbQ==-G0gAAMTaOa2GyS2LrL60S7psn_Af4JAD9rYSOWAgFlOMASc0Nex7jVV u3N_DD6V ABFQG12cPieEXIU2ESSymsr8hE=

http://software-files-a.cnet.com/s/software/12/59/06/.../DPSetup.exe

http://files.downloadnow.com/s/software/12/59/06/.../DPSetup.exe

http://dl.avery.com/DPSetup.exe

http://files.avery.com/DPSetup.exe

http://www.avery.com/vgnfiles//OP/en_us/Static Files/.../DPSetup.exe

Scan DPSetup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.