home

avidemux-2-6-0.exe

The application avidemux-2-6-0.exe has been detected as a potentially unwanted program by 6 anti-malware scanners. The file has been seen being downloaded from secure.download-sponsor.de.
MD5:
6e89f3cac0784ca854f35b4bea126f47

SHA-1:
1dd0db7f2ad3937155b8f1c17fce92eb2db0d57b

SHA-256:
1276fd4cd1fa75a0f653e60e4ce4837b7e52fe2678b5b0c70463c16700b994ea

Scanner detections:
6 / 68

Status:
Potentially unwanted

Analysis date:
4/19/2024 4:59:24 PM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
Adware.Downware.2124
9.0.1.05190

Fortinet FortiGate
W32/Generic.AC.72309
11/8/2015

G Data
Win32.Application.OCSClient
15.11.25

Kaspersky
not-a-virus:Downloader.Win32.OCSBundle
15.0.0.543

Rising Antivirus
PE:Trojan.Win32.Staser.a!1614319 [F]
23.00.65.151106

Zillya! Antivirus
Downloader.VB.Win32.84829
2.0.0.2497

File size:
96 KB (98,304 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\avidemux-2-6-0.exe

File PE Metadata
Compilation timestamp:
11/7/2013 12:30:27 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
1536:/QNb8xKSelv4xeMD7xyA2jqrqGW3M5YNY9Xne45IIwDapO:4NQWlwxfDFyALqGWcioXe458OpO

Entry address:
0x1620

Entry point:
68, 08, F6, 40, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 48, 7B, 67, F9, EA, 84, 54, 4E, A4, BC, 2A, 76, AB, 0B, F1, 47, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 4F, 43, 53, 43, 6C, 69, 65, 6E, 74, 00, 6E, 64, 72, 65, 5C, 44, 00, 00, 00, 00, FF, CC, 31, 00, 03, C2, 2F, AF, 82, E1, C0, 51, 41, AC, 43, D4, F0, FF, 27, A6, DB, A9, 21, E0, 4B, 04, AD, DB, 48, A5, 77, 75, FA, 53, 79, 63, 15, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00...
 
[+]

Entropy:
6.7803

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
96 KB (98,304 bytes)

The file avidemux-2-6-0.exe has been seen being distributed by the following URL.

https://secure.download-sponsor.de/?pid=techradar&cid=128401

Remove avidemux-2-6-0.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.