home

vlc-setup.exe

Quick Downloader

The Adlogica setup manager, an installer that bundles applications with offers for additional 3rd party software, mostly unwanted adware, and may be installed without consent. The application vlc-setup.exe by Quick Downloader has been detected as adware by 14 anti-malware scanners. The program is a setup application that uses the Adlogica Quick Downloader installer. The setup program uses the InstallCore engine which may bundle additional software offers including toolbars and browser extensions. The installer is marketed through download protals and search ads as the VideoLAN VLC media player but will also install additional software offers which include adware, PUPs and browser toolbars.
Publisher:
Quick Downloader  (signed and verified)

MD5:
346e0c54b319a156b234ae613882b292

SHA-1:
9cb42fd3d36608e96895a5302af176a4e9e54b80

SHA-256:
208d7343da2a737bded52aa449e8f0c0ccb035f707113f90aae7076b5986ee07

Scanner detections:
14 / 68

Status:
Adware

Explanation:
Uses the InstallCore download manager to install additional potentially unwanted software which may include extensions such as DealPly and various toolbars.

Description:
This 'download manager' is also considered bundleware, a utility designed to download software (possibly legitimate or opensource) and bundle it with a number of optional offers including ad-supported utilities, toolbars, shopping comparison tools and browser extensions.

Analysis date:
4/18/2024 5:27:39 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
ADWARE/InstallCore.Gen7
7.11.148.146

AVG
Adware InstallCore.WH
2014.0.4040

Comodo Security
Application.Win32.InstallCore.KAU
18243

Dr.Web
Adware.InstallCore.133
9.0.1.05190

ESET NOD32
Win32/InstallCore.BY potentially unwanted application
7.0.302.0

F-Prot
W32/A-dbe1ec51
v6.4.7.1.166

K7 AntiVirus
Unwanted-Program
13.177.12041

McAfee
Trojan.Artemis!55BFF7EA8842
5600.6961

Qihoo 360 Security
Malware.QVM20.Gen
1.0.0.1015

Reason Heuristics
PUP.Installer.QuickDownloader.J
14.10.30.20

Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594
23.00.65.141028

Sophos
Install Core
4.98

Vba32 AntiVirus
Downware.InstallCore
3.12.26.0

VIPRE Antivirus
InstallCore
29026

File size:
639.6 KB (654,960 bytes)

File type:
Executable application (Win32 EXE)

Bundler/Installer:
Adlogica Quick Downloader (using Inno Setup)

Common path:
C:\users\{user}\downloads\vlc-setup.exe

Digital Signature
Signed by:
Quick Downloader

Authority:
COMODO CA Limited

Valid from:
8/7/2013 9:00:00 PM

Valid to:
8/8/2014 8:59:59 PM

Subject:
CN=Quick Downloader, O=Quick Downloader, STREET=96 Jessie st, STREET=4th floor, L=San Francisco, S=CA, PostalCode=94105, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00886E74060345A7D9DD833C2ADF305E49

File PE Metadata
Compilation timestamp:
6/19/1992 7:22:17 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:QyMJfsG0f8Qe7AHvVhDiA1/NG4mYegrgqBjszwIAkr6s7N4l4r6ds:QyMJfsbTe7crf1oLhghBjsznAkrZ7xss

Entry address:
0x98CC

Entry point:
55, 8B, EC, 83, C4, CC, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, FA, 97, FF, FF, E8, 01, AA, FF, FF, E8, 2C, CC, FF, FF, E8, 73, CC, FF, FF, E8, 0A, F3, FF, FF, E8, 71, F4, FF, FF, 33, C0, 55, 68, 76, 9F, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 2C, 9F, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, B0, 40, 00, E8, 9B, FE, FF, FF, E8, 26, FA, FF, FF, 8D, 55, F0, 33, C0, E8, E0, D0, FF, FF, 8B, 55, F0, B8, D8, BD, 40, 00, E8, AB, 98, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, D8, BD, 40, 00, B2, 01, B8...
 
[+]

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
36 KB (36,864 bytes)

Remove vlc-setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.