home

sony vegas pro.exe

XXXV-II laqueus

lactans

The application sony vegas pro.exe has been detected as a potentially unwanted program by 5 anti-malware scanners. This is a setup program which is used to install the application. It uses the Solimba download manager to push adware offers during the download and setup process. Bundled adware includes search and shopping web browser toolbars. The file has been seen being downloaded from sanefile.com.
Publisher:
lactans

Product:
XXXV-II laqueus

Description:
aedificium

Version:
42.98.19.33

MD5:
64e840fb06e95d97e2f7e77f6d0c57ff

SHA-1:
7691c1929bf75183fefba314507dc693b76837cd

SHA-256:
ce9296033164acb285604a4b7044293a5b53a1a77091d46f64813dceb2670d13

Scanner detections:
5 / 68

Status:
Potentially unwanted

Explanation:
Uses the Solimba installer to bundle adware offers.

Analysis date:
11/24/2024 11:43:43 AM UTC  (today)

Scan engine
Detection
Engine version

avast!
MSIL:Solimba-Z [PUP]
160518-2

AVG
Adware BundleApp_r.AV
2015.0.4604

ESET NOD32
MSIL/Solimba.AH potentially unwanted application
8.0.319.0

Microsoft Security Essentials
Threat.Undefined
1.225.2396.0

Norman
Gen:Variant.Razy.6451
28.05.2016 15:32:18

File size:
522.7 KB (535,295 bytes)

Product version:
13.58.3.34

Copyright:
Copyright 2014 tutis niveus

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\sony vegas pro.exe

File PE Metadata
Compilation timestamp:
10/9/2014 9:19:39 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
12288:EI4x2SFGIWTUukzHXc4RoSIANRjxx3pwJ+KIMmYUZli:EI40eWTnM/NRNHwJ+KDmYUW

Entry address:
0xDE9C

Entry point:
E8, A5, 6C, 00, 00, E9, 00, 00, 00, 00, 6A, 14, 68, E8, 6D, 42, 00, E8, FE, 15, 00, 00, E8, 76, 6E, 00, 00, 0F, B7, F0, 6A, 02, E8, 38, 6C, 00, 00, 59, B8, 4D, 5A, 00, 00, 66, 39, 05, 00, 00, 40, 00, 74, 04, 33, DB, EB, 33, A1, 3C, 00, 40, 00, 81, B8, 00, 00, 40, 00, 50, 45, 00, 00, 75, EB, B9, 0B, 01, 00, 00, 66, 39, 88, 18, 00, 40, 00, 75, DD, 33, DB, 83, B8, 74, 00, 40, 00, 0E, 76, 09, 39, 98, E8, 00, 40, 00, 0F, 95, C3, 89, 5D, E4, E8, 01, 65, 00, 00, 85, C0, 75, 08, 6A, 1C, E8, DC, 00, 00, 00, 59, E8...
 
[+]

Packer / compiler:
PEQuake V0.06

Code size:
113.5 KB (116,224 bytes)

The file sony vegas pro.exe has been seen being distributed by the following URL.

http://sanefile.com/n/3.1.34/.../Sony Vegas Pro.exe

Remove sony vegas pro.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.