home

Launcher.exe

Lphant

Bandoo Media Inc

The application Launcher.exe by Bandoo Media Inc has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Bandoo Media Inc.  (signed by Bandoo Media Inc)

Product:
Lphant

Description:
Launcher

Version:
8.0.0.0

MD5:
87f12264eb75f88efd3dc0da41b44ffd

SHA-1:
55a44e169d5b0bde80d6909632b009ce9bf7be5a

SHA-256:
8b8ab5b00892c64b60f0f9cc06bb4f4fe761fba67c6cf2fa882e7d694095522e

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/25/2024 8:05:42 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Optional.BandooMedia.I
14.7.23.23

File size:
151.5 KB (155,128 bytes)

Product version:
8.0.0.133336

Copyright:
Copyright (c) 2005 - 2013

Original file name:
Launcher.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\lphant applications\lphant\launcher.exe

Digital Signature
Signed by:
Bandoo Media Inc

Authority:
Thawte, Inc.

Valid from:
9/19/2012 3:00:00 AM

Valid to:
10/6/2014 2:59:59 AM

Subject:
CN=Bandoo Media Inc, O=Bandoo Media Inc, L=Panama City, S=Panama, C=PA

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
32B24D9C6170CB3DA53A710307649B95

File PE Metadata
Compilation timestamp:
6/18/2013 3:51:46 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
3072:3Nn00AYxyF6LtgmIcgpyFM/wAHjwQnXRe5DcfX:3NnxARFQt1Xs5t86

Entry address:
0xB672

Entry point:
E8, FD, 29, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 68, 2C, 31, 41, 00, FF, 15, 34, 20, 41, 00, 85, C0, 74, 15, 68, 1C, 31, 41, 00, 50, FF, 15, 30, 20, 41, 00, 85, C0, 74, 05, FF, 75, 08, FF, D0, 5D, C3, 8B, FF, 55, 8B, EC, FF, 75, 08, E8, C8, FF, FF, FF, 59, FF, 75, 08, FF, 15, 20, 21, 41, 00, CC, 6A, 08, E8, C3, 2B, 00, 00, 59, C3, 6A, 08, E8, E1, 2A, 00, 00, 59, C3, 8B, FF, 56, E8, B7, 14, 00, 00, 8B, F0, 56, E8, 07, 05, 00, 00, 56, E8, 38, 05, 00, 00, 56, E8, 56, 1D, 00, 00, 56, E8, CE, 2D, 00...
 
[+]

Entropy:
5.8401

Code size:
64.5 KB (66,048 bytes)

Remove Launcher.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.