home

vlc-2.1.5-win32.exe

Frank Bohling

The application vlc-2.1.5-win32.exe by Frank Bohling has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Frank Bohling  (signed and verified)

MD5:
d94fd8e811ca9e36b76048d412090105

SHA-1:
1ff8f9ced84acdc42a4c1227eb7093fa009738cc

SHA-256:
3e3421350e17db217f3c43625e53dc0683ad8e26d74bfe1df9e17a9ddac55e92

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
4/25/2024 5:54:52 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.3.1.1

File size:
24.5 MB (25,637,984 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\vlc-2.1.5-win32.exe

Digital Signature
Signed by:
Frank Bohling

Authority:
StartCom Ltd.

Valid from:
7/29/2013 6:52:35 PM

Valid to:
7/30/2015 7:25:45 PM

Subject:
E=bohling@web.de, CN=Frank Bohling, L=Verden, S=Niedersachsen, C=DE, Description=kwj2OwWKOxwvSel1

Issuer:
CN=StartCom Class 2 Primary Intermediate Object CA, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL

Serial number:
0A8F

File PE Metadata
Compilation timestamp:
12/5/2009 11:50:41 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

Entry address:
0x30CB

Entry point:
1F, 4C, BA, B2, 90, 19, CB, 70, EA, 4F, 20, 8C, 9D, 80, 46, 36, 9F, A8, 06, B9, C4, 38, D3, 5F, E5, FC, 8A, EA, 0F, BD, C7, CF, 1A, AE, 08, FF, BF, 90, B9, 26, AB, B3, 6B, 0D, 13, B8, 8B, EE, 98, 71, 01, 49, 1F, 07, 92, 4B, 43, F8, 62, 66, 35, 9C, EC, DF, D5, E2, 0E, 0B, C8, F7, 8A, 3C, A7, 2F, 96, 27, 37, 63, 56, C4, A9, AD, A2, 14, 3A, 41, 66, 71, AD, 98, 07, 5D, 89, 07, 7E, 6E, FE, EC, 7A, 9B, C0, CD, 18, 37, B0, 72, 3A, 84, 85, 42, AF, 11, 04, B7, FF, FE, E6, 88, 95, 18, EA, 97, F4, 5A, AB, 1B, 1E, F5...
 
[+]

Code size:
22.5 KB (23,040 bytes)

Remove vlc-2.1.5-win32.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.