AviSynth_150419.exe

Avisynth 2.6

The Public

This is a self-extracting archive and installer. The file has been seen being downloaded from www.free-codecs.com and multiple other hosts.
Publisher:
The Public

Product:
Avisynth 2.6

Description:
Avisynth installer

Version:
2.6.0.6

MD5:
7299618ccdfa57a2302381fd104234d6

SHA-1:
e153e2161ea4400ebe7576732fe9576cf6b760b1

SHA-256:
a68272db4b475e720ede626c81d750b75ad585f18e0da766301372bbc48a3801

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
12/25/2024 7:31:12 PM UTC  (today)

Scan engine
Detection
Engine version

ViRobot
Trojan.Win32.A.Agent.6514961[h]
2014.3.20.0

File size:
6.2 MB (6,514,961 bytes)

Product version:
2.6.0

Copyright:
© 2000-2015 Ben Rudiak-Gould and others

Original file name:
AviSynth_150419.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

File PE Metadata
Compilation timestamp:
5/3/2008 5:08:42 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:kxJBlzXyx1nNUxG0fX03SAvVRY4s6i3SkrCMmD2gPWh7BC6qWOy1KxCuo1b:uHOKGaMNRw2bOh7BCGz4ob

Entry address:
0x32540

Entry point:
60, BE, 00, E0, 42, 00, 8D, BE, 00, 30, FD, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, EF, 75, 09, 8B, 1E, 83, EE, FC, 11, DB, 73, E4, 31, C9, 83, E8, 03, 72, 0D, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 74, 89, C5, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 75, 20, 41, 01, DB, 75...
 
[+]

Entropy:
7.9999

Packer / compiler:
UPX 2.90LZMA

Code size:
20 KB (20,480 bytes)

The file AviSynth_150419.exe has been seen being distributed by the following 27 URLs.

http://www.free-codecs.com/download_soft.php?d=138201702cd951027fb1cd0f687099e3&s=110&r=&f=avisynth.htm

https://downloads.sourceforge.net/project/avisynth2/AviSynth 2.6/.../AviSynth_260.exe

http://www.free-codecs.com/download_soft.php?d=db016afe66373b05f52cae8611dea5cc&s=110&r=&f=avisynth.htm

http://soft.mydiv.net/win/dlfiled24c2_279502/.../AviSynth_260.exe

http://lb.cdn.m6web.fr/d/c/a/f17bf1cccb410d99288998df50b0ca35/5822271f/soft/.../avisynth_2-6-0_en_314452.exe

http://www.free-codecs.com/download_soft.php?d=3a51b0e04f63118b46b41525a860724b&s=110&r=&f=avisynth.htm

http://downloads.sourceforge.net/project/avisynth2/AviSynth_Alpha_Releases/.../AviSynth_150419.exe

http://www.free-codecs.com/download_soft.php?d=648d05da2d830bd140e749e0ccaf8821&s=110&r=&f=avisynth.htm

https://heanet.dl.sourceforge.net/project/avisynth2/AviSynth 2.6/.../AviSynth_260.exe

http://vorboss.dl.sourceforge.net/project/avisynth2/AviSynth 2.6/.../AviSynth_260.exe

http://pilotfiber.dl.sourceforge.net/project/avisynth2/AviSynth 2.6/.../AviSynth_260.exe

http://avisynth.software.informer.com/.../

http://superb-sea2.dl.sourceforge.net/project/avisynth2/AviSynth 2.6/.../AviSynth_260.exe

http://www.free-codecs.com/download_soft.php?d=d88e9d540177ab8ed6019d46cefc5e48&s=110&r=&f=avisynth.htm

Scan AviSynth_150419.exe - Powered by Reason Core Security