home

codecperformersetup.exe

The application codecperformersetup.exe has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. The file has been seen being downloaded from b.softologic.com a web site host known to distribute potentially unwanted software operated by Softango Technology LLC.
MD5:
68fcd58ef88a0d6126935af645ae6041

SHA-1:
4e005691811f5e431b3cf14ab19fb1c9efd68b4a

SHA-256:
288aa1b833e14d1a8a61dea1d1ebe8e66066fd4be76cd2308a02785d1aab6fc1

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/16/2024 5:53:19 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Win.Reputation
15.10.10.18

File size:
9.2 KB (9,450 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\codecperformersetup.exe

File PE Metadata
Compilation timestamp:
8/22/2013 4:44:40 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
192:DBzh3fnn7McJtC1euUG/cYG/CtlWvJIMdqlB:DBpfnn7MKM/s/VvJIVB

Entry address:
0xC05D

Entropy:
6.1773

Code size:
97 KB (99,328 bytes)

The file codecperformersetup.exe has been seen being distributed by the following URL.

http://b.softologic.com/.../$iuI8ZpA3ZUMkvhEW?exename=CodecPerformerSetup&cid=4150&clickid=0022940834623695082&orig_client=BIDVERDISPCLN-1313776&abc=3

Remove codecperformersetup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.