home

free_vlc_player_setup.exe

Sakysoft s.r.l.

The application free_vlc_player_setup.exe by Sakysoft s.r.l has been detected as a potentially unwanted program by 23 anti-malware scanners. The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. This program installs potentially unwanted software on your PC at the same time as the software you are trying to install, without adequate consent.
Publisher:
Sakysoft s.r.l.  (signed and verified)

MD5:
87ff7e4a6a998b7885ae3f8d3da034a7

SHA-1:
c9592712e0fc1b5719c59bc7095a6a4d21be07e4

SHA-256:
3e157c5b74940922f00b88132fda3930a1cebb9592596f8cbd92329e3c6b0700

Scanner detections:
23 / 68

Status:
Potentially unwanted

Explanation:
Bundles additional adware offers during download and installation using the OutBrowse installer.

Analysis date:
4/26/2024 3:21:15 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Application.Bundler.Outbrowse.A
812

Agnitum Outpost
PUA.OutBrowse
7.1.1

Avira AntiVirus
APPL/Downloader.Gen
7.11.185.228

avast!
OutBrowse-I [PUP]
141025-0

Bitdefender
Application.Bundler.Outbrowse.A
1.0.20.1595

Clam AntiVirus
Win.Adware.OutBrowse-4
0.98/21411

Comodo Security
Application.Win32.OutBrowse.~B
20088

Dr.Web
Threat.Undefined
9.0.1.05190

ESET NOD32
Win32/OutBrowse.D potentially unwanted application
7.0.302.0

Fortinet FortiGate
Riskware/NSIS_OutBrowse
11/15/2014

F-Secure
Application.Bundler.Outbrowse
11.2014-15-11_7

G Data
Application.Bundler.Outbrowse
14.11.24

Kaspersky
not-a-virus:Downloader.NSIS.OutBrowse
15.0.0.494

Malwarebytes
PUP.Optional.Smart
v2014.11.15.05

McAfee
Artemis!84E1BAD5E872
5600.6946

MicroWorld eScan
Application.Bundler.Outbrowse.A
15.0.0.957

NANO AntiVirus
Trojan.Win32.OutBrowse.cxaakt
0.28.6.63362

Qihoo 360 Security
Trojan.Generic
1.0.0.1015

Quick Heal
TrojanDownloader.NSIS.OutBrowse.B
11.14.14.00

Reason Heuristics
PUP.Optional.Installer.V
14.11.15.4

Sophos
OutBrowse
4.98

Vba32 AntiVirus
Downloader.OutBrowse
3.12.26.3

VIPRE Antivirus
Threat.4784459
34232

File size:
606.6 KB (621,160 bytes)

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\free_vlc_player_setup.exe

Digital Signature
Signed by:
Sakysoft s.r.l.

Authority:
COMODO CA Limited

Valid from:
2/21/2013 7:00:00 PM

Valid to:
2/22/2014 6:59:59 PM

Subject:
CN=Sakysoft s.r.l., O=Sakysoft s.r.l., STREET=Via Gorghi 6, L=Udine, S=UD, PostalCode=33100, C=IT

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
71866EA827886C967A3E4D23288DBA3A

File PE Metadata
Compilation timestamp:
12/5/2009 5:50:52 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:Fj5cWN3aPbD3x6imu00ufz6HSkdxvN+RrA55N2uSgcbUe6Q8SAEe3nTJl4:FdrNKPbDVmH0uf+HSkHl+RsnNFSgcD6o

Entry address:
0x30FA

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 60, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B0, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 18, EC, 42, 00, E8, F1, 2B, 00, 00, A3, 64, EB, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 98, 8F, 42, 00, FF, 15, 58, 71, 40, 00, 68, 54, 91, 40, 00, 68, 60, E3, 42, 00, E8, A4, 28, 00, 00, FF, 15, AC, 70, 40, 00, BF, 00, 40, 43, 00, 50, 57, E8, 92, 28, 00, 00...
 
[+]

Packer / compiler:
Nullsoft install system v2.x

Code size:
23.5 KB (24,064 bytes)

Remove free_vlc_player_setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.