vlc-2.0.6-win32.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from bramegm.com and multiple other hosts.
MD5:
43c35081ce0ac367267c5916ab25a817

SHA-1:
c0bf63d8ab5d191c6a184c50efd27caddbe99ad2

SHA-256:
7238aa78b6e18f5e87f277481aa9d3ba035d9d2811df9728b5372790dac06361

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/23/2024 3:00:00 AM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Trojan.Zbot!6.103C
23.00.65.131208

File size:
21.9 MB (22,948,790 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\vlc-2.0.6-win32.exe

File PE Metadata
Compilation timestamp:
1/5/2012 1:21:23 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.22

CTPH (ssdeep):
393216:1lYUugR2ZdBFeVkEHLmkGUdyTdhdnRZv4AkP2lQPfTNJJduoMAn:j3hMOzUSyTdnRZAAkbrmY

Entry address:
0x4327

Entry point:
55, 89, E5, 57, 56, 53, 81, EC, AC, 01, 00, 00, FF, 15, 74, 93, 42, 00, C7, 04, 24, 01, 80, 00, 00, FF, 15, 58, 94, 42, 00, 53, C7, 04, 24, 00, 00, 00, 00, FF, 15, 98, 94, 42, 00, 56, A3, 40, 7B, 42, 00, C7, 04, 24, 08, 00, 00, 00, E8, 8D, 3B, 00, 00, A3, 9C, 7B, 42, 00, 8D, 85, 84, FE, FF, FF, 57, C7, 44, 24, 10, 00, 00, 00, 00, C7, 44, 24, 0C, 60, 01, 00, 00, 89, 44, 24, 08, C7, 44, 24, 04, 00, 00, 00, 00, C7, 04, 24, 01, B3, 40, 00, FF, 15, AC, 94, 42, 00, 83, EC, 14, C7, 44, 24, 04, 02, B3, 40, 00, C7...
 
[+]

Entropy:
7.9996  (probably packed)

Code size:
34.5 KB (35,328 bytes)

The file vlc-2.0.6-win32.exe has been discovered within the following programs.

HiDef Media Player 1.1.12  by HiDefMedia
Publisher's description - “HiDef is a very popular free windows media player that comes with virtually every codec built in. This means you can play almost any media file you have or will ever have. It can even play back damaged files.”
www.hidefplayer.com
54% remove it
LAME is a library that allows some programs to encode MP3 files. LAME is free, but in some countries you may need to pay a license fee in order to legally encode MP3 files.
9% remove it
Pidgin  by Pidgin
Publisher's description - “Pidgin is a chat program which lets you log in to accounts on multiple chat networks simultaneously. This means that you can be chatting with friends on MSN, talking to a friend on Google Talk, and sitting in a Yahoo chat room all at the same time.”
sourceforge.net/projects/pidgin
1% remove it
TeamSpeak 3 Client  by TeamSpeak Systems GmbH
Publisher's description - “TeamSpeak 3 continues the legacy of the original TeamSpeak communication system previously offered in TeamSpeak Classic (1.5) and TeamSpeak 2.”
www.teamspeak.com
4% remove it
VLC Media Player  by VideoLAN Team
VLC media player (also known as VLC) is a highly portable free and open-source cross-platform media player and streaming media server written by the VideoLAN project.
www.videolan.org
12% remove it
 
Powered by Should I Remove It?

The file vlc-2.0.6-win32.exe has been seen being distributed by the following 50 URLs.

http://bramegm.com/software/files/.../vlc.exe

http://mirror.cedia.org.ec/videolan/vlc/2.0.6/.../vlc-2.0.6-win32.exe

http://ftp.halifax.rwth-aachen.de/videolan/vlc/2.0.6/.../vlc-2.0.6-win32.exe

http://vlc.sg.mirror.safehousecloud.com/vlc/2.0.6/.../vlc-2.0.6-win32.exe

http://ftp.crans.org/videolan/vlc/2.0.6/.../vlc-2.0.6-win32.exe

http://192.168.43.1:33455/static/storage/.../vlc-2.0.6-win32.exe

http://1.csillagpor.hu/vlc.exe

http://ftp.fau.de/videolan/vlc/2.0.6/.../vlc-2.0.6-win32.exe

http://localhost:8080/SystemVideo/.../vlc-2.06-win32.exe

http://www.softango.com/.../63213?source=fs&cid=3966

http://ftp.cixug.es/videolan/vlc/2.0.6/.../vlc-2.0.6-win32.exe

http://mirror.nbtelecom.com.br/videolan/vlc/2.0.6/.../vlc-2.0.6-win32.exe

http://172.16.0.15/Softwares/.../vlc-2.0.6-win32.exe

http://mirror.netcologne.de/videolan.org/vlc/2.0.6/.../vlc-2.0.6-win32.exe

http://www.os-downloads.com/uk/.../download.php

http://vlc-media-player.fi.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-emqiLn6CikZo=

http://mirror.espoch.edu.ec/videolan/vlc/2.0.6/.../vlc-2.0.6-win32.exe

http://videolan.mirror.ba/vlc/2.0.6/.../vlc-2.0.6-win32.exe

http://mirror.fibergrid.in/videolan/vlc/2.0.6/.../vlc-2.0.6-win32.exe

http://vlc-media-player.sv.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-emqeJpqGhmJk=

http://mirror.library.ucy.ac.cy/videolan/vlc/2.0.6/.../vlc-2.0.6-win32.exe

http://vlc-media-player.he.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-emqiPoqWjmZ0=

Latest 30 of 97 download URLs

Scan vlc-2.0.6-win32.exe - Powered by Reason Core Security