home

vlc-2.0.4.exe

The application vlc-2.0.4.exe has been detected as a potentially unwanted program by 5 anti-malware scanners. This is a setup program which is used to install the application. It uses the InstallCore engine which may bundle additional software offers including toolbars and browser extensions. The file has been seen being downloaded from downloader.downloadster.org and multiple other hosts a known adware distribution point operated by Downloadster.
MD5:
b472e5cb3475a3e8faab0b95c5d1e286

SHA-1:
7068b502f319051704245d0c609bbf572273d71d

SHA-256:
a8f31f12913c40b805ed826ca9ff2f56936ef38e37b17a689c2bf31cace126c8

Scanner detections:
5 / 68

Status:
Potentially unwanted

Explanation:
Uses the InstallCore download manager to install additional potentially unwanted software which may include extensions such as DealPly and various toolbars.

Analysis date:
4/19/2024 3:16:44 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
ADWARE/InstallCore.Gen
7.11.74.188

Dr.Web
Adware.InstallCore.86
9.0.1.045

ESET NOD32
Win32/InstallCore.AZ (variant)
10.8276

Trend Micro House Call
TROJ_GEN.F47V0213
7.2.45

VIPRE Antivirus
Trojan.Win32.Generic
17282

File size:
1.2 MB (1,216,648 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\vlc-2.0.4.exe

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:cy/qOYzf9CvtlAi23Xx9C/ldiT9sOHUghT/lOhWIO4HpB:cem9Cvterhj9sRg99OARQ

Entry address:
0xD8780

Entry point:
55, 8B, EC, 83, C4, F0, B8, 64, 6D, 41, 00, E8, 5D, D7, FF, FF, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
877.5 KB (898,560 bytes)

The file vlc-2.0.4.exe has been seen being distributed by the following 2 URLs.

http://downloader.downloadster.org/.../vlc.php?kw=VLC Media Player&subid=DSTVLFR&cust=vlc&type=vlc&gclid=COy0_pixmLUCFa7HtAod2iQA6A&utm_campaign=DSTVLFR&fwd=1

http://downloader.downloadster.org/.../vlc.php?kw=flv player download&subid=DSTVLIT&cust=flv player download&type=vlc&gclid=CK6At6LTl7UCFc8c6wod5mwAcg&utm_campaign=DSTVLIT&fwd=1

Remove vlc-2.0.4.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.