home

watercad v8 xm 64 bits.exe

The application watercad v8 xm 64 bits.exe has been detected as a potentially unwanted program by 8 anti-malware scanners. It uses the InstallCore engine which may bundle additional software offers including toolbars and browser extensions. The file has been seen being downloaded from www.download-provider.org.
MD5:
c6865f341faeb0e65dc2f460bf5785c7

SHA-1:
4ff3a65c232ee45b24098164689c855d1767141e

SHA-256:
206b0d087f997ec2e93dbacd9c4894577c2c4d0d1a5f5476843ecff30c78aa9e

Scanner detections:
8 / 68

Status:
Potentially unwanted

Explanation:
Uses the InstallCore download manager to install additional potentially unwanted software which may include extensions such as DealPly and various toolbars.

Analysis date:
4/26/2024 6:04:04 AM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Adware-AVZ [Adw]
160327-1

AVG
Adware InstallCore.AX
2015.0.4545

Dr.Web
Adware.InstallCore.80
9.0.1.05190

Emsisoft Anti-Malware
Adware.Generic.375682
11.5.0.6191

ESET NOD32
Win32/InstallCore.AZ potentially unwanted application
8.0.319.0

F-Prot
W32/InstallCore.S.gen
4.6.5.141

Norman
Adware.Generic.375682
02.04.2016 17:35:19

Reason Heuristics
Adware.Generic.AT (M)
16.4.19.14

File size:
1.1 MB (1,188,296 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\watercad v8 xm 64 bits.exe

File PE Metadata
Compilation timestamp:
6/19/1992 5:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:YV/2U/I6v0NpF5WsL9IdWSm+2gda1V7f4W5C/kPxY8axFCTrItqwiI/t57rn:YV/2U/H0NpF5WsL9IdhmLgdaf7f4gC/n

Entry address:
0xD6630

Entry point:
55, 8B, EC, 83, C4, F0, B8, 28, 54, 41, 00, E8, C7, F0, FF, FF, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.7136

Developed / compiled with:
Microsoft Visual C++

Code size:
869.5 KB (890,368 bytes)

The file watercad v8 xm 64 bits.exe has been seen being distributed by the following URL.

http://www.download-provider.org/.../download-k:WaterCAD v8 XM 64 bits.html?server=us

Remove watercad v8 xm 64 bits.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.