home

xara_3d_maker_7_en-gb_110216_14-30.exe

Xara 3D Maker 7

Xara Group Ltd

This is a setup program which is used to install the application. This is installed with Xara 3D Maker 7. The file has been seen being downloaded from data2.stahnu.cz and multiple other hosts.
Publisher:
Xara Group Ltd  (signed and verified)

Product:
Xara 3D Maker 7

Description:
Xara 3D Maker 7 (en-GB)

Version:
7.0.0.415

MD5:
09bf18cce2f0842cc187e5e3fde7b80b

SHA-1:
4de227c40d1326a88486249e5ef27bf27588d7f6

SHA-256:
3a13959c29fad2dd92c2f73633cc2db33da9802a01e4cc18abd0e43a3e5b663e

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 3:00:23 PM UTC  (today)

File size:
19.9 MB (20,849,728 bytes)

Product version:
7.0.0.415

Copyright:
Copyright © Xara Group Ltd

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Digital Signature
Signed by:
Xara Group Ltd

Authority:
Thawte, Inc.

Valid from:
9/17/2010 4:00:00 AM

Valid to:
9/17/2011 3:59:59 AM

Subject:
CN=Xara Group Ltd, OU=SECURE APPLICATION DEVELOPMENT, O=Xara Group Ltd, L=Hemel Hempstead, S=Herts, C=GB

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
74043B9300AA596F8365A2737B7CEFAC

File PE Metadata
Compilation timestamp:
9/8/2010 7:27:01 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
393216:lmmwfDBsyNOQqHTNzb3xQ56SdVaCpeEsqI009GIN:DIDB/NO9zpb3xqBdVyz9v

Entry address:
0x3310B

Entry point:
E8, 94, 83, 00, 00, E9, 17, FE, FF, FF, 3B, 0D, 70, 16, 48, 00, 75, 02, F3, C3, E9, 14, 84, 00, 00, 51, C7, 01, BC, FE, 46, 00, E8, 0C, 85, 00, 00, 59, C3, 56, 8B, F1, E8, EA, FF, FF, FF, F6, 44, 24, 08, 01, 74, 07, 56, E8, 81, 44, FE, FF, 59, 8B, C6, 5E, C2, 04, 00, 8B, 44, 24, 04, 83, C1, 09, 51, 83, C0, 09, 50, E8, 51, 85, 00, 00, F7, D8, 59, 1B, C0, 59, 40, C2, 04, 00, 8B, C1, 83, 60, 04, 00, 83, 60, 08, 00, C7, 00, C4, FE, 46, 00, C3, 53, 8B, 5C, 24, 08, 56, 57, 8B, F9, C7, 07, C4, FE, 46, 00, 8B, 03...
 
[+]

Entropy:
7.9750  (probably packed)

Code size:
416 KB (425,984 bytes)

The file xara_3d_maker_7_en-gb_110216_14-30.exe has been discovered within the following program.

Xara 3D Maker 7  by Xara Group Ltd
Publisher's description - “Xara 3D Maker is solely designed to create the highest quality 3D text and graphics, such as headings, logos, titles and buttons.”
www.xara.com/us/products/xara3d/features
8% remove it
 
Powered by Should I Remove It?

The file xara_3d_maker_7_en-gb_110216_14-30.exe has been seen being distributed by the following 2 URLs.

http://data2.stahnu.cz/downloadFile.php?n=eGFyYS0zZF83LjAuMC40MTUuZXhl&s=2fqscu9hopv4r9ancn3ru0jei0&r=ed7ea3be0c412d73141b89ef273f0684

https://doc-00-60-docs.googleusercontent.com/docs/securesc/s6ia0m9gi4hva638usjddsa73purh1be/k3rflsd5bb3p2brs1fj6gq5cela65cgq/1465848000000/15346045091824260608/.../0B8Hi9o2SWt9-eGJ4cFZOVzRfdXM?e=download

Scan xara_3d_maker_7_en-gb_110216_14-30.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.