home

vlc.exe

the VideoLAN Team

This is a setup program which is used to install the application. The file has been seen being downloaded from mail-attachment.googleusercontent.com.
Publisher:
the VideoLAN Team

Description:
VLC media player

Version:
0.9.6

MD5:
bf5765aa356c27657c4eb712d6c558d4

SHA-1:
b994f4907317b6a83c80f436d57a87b7539e0adf

SHA-256:
0da2b56213e06d51bc96b7ee9f1275d578ce3cb32d06f001739294792f28d4b3

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/26/2024 2:43:26 PM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
W32.HfsAutoB
1.3.0.4613

File size:
112.1 KB (114,840 bytes)

Copyright:
(c) 1996-2008 the VideoLAN Team

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\videolan\vlc\vlc.exe

File PE Metadata
Compilation timestamp:
11/13/2008 12:24:38 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.56

CTPH (ssdeep):
1536:6fxJingEX6YaSd4Psq0PXpmWu79B1ArPUco9FLdS1EAd4kkVIIOQSOqinB:6fni/raBIpPQMPozgEAQIIOXinB

Entry address:
0x1110

Entry point:
55, 89, E5, 83, EC, 14, 6A, 02, FF, 15, 60, 51, 40, 00, E8, FD, FE, FF, FF, 8D, B6, 00, 00, 00, 00, 8D, BC, 27, 00, 00, 00, 00, 55, 89, E5, 83, EC, 14, 6A, 01, FF, 15, 60, 51, 40, 00, E8, DD, FE, FF, FF, 8D, B6, 00, 00, 00, 00, 8D, BC, 27, 00, 00, 00, 00, 55, 89, E5, 53, 83, EC, 04, 8B, 45, 08, 8B, 00, 8B, 00, 3D, 91, 00, 00, C0, 77, 3B, 3D, 8D, 00, 00, C0, 72, 4B, BB, 01, 00, 00, 00, 50, 50, 6A, 00, 6A, 08, E8, 34, 07, 00, 00, 83, C4, 10, 83, F8, 01, 0F, 84, D6, 00, 00, 00, 85, C0, 0F, 85, 90, 00, 00, 00...
 
[+]

Packer / compiler:
Dev-C++ v5

Code size:
3 KB (3,072 bytes)

2 Autoplay Handlers
Display name:
VLCPlayCDAudioOnArrival

Display name:
VLCPlayDVDMovieOnArrival


The file vlc.exe has been discovered within the following program.

GmoteServer  by Gmote.org
www.gmote.org
About 5% of users remove it
 
Powered by Should I Remove It?

The file vlc.exe has been seen being distributed by the following URL.

https://mail-attachment.googleusercontent.com/attachment?ui=2&ik=34c83b24b6&view=att&th=129b2e4a596d130c&attid=0.1&disp=safe&realattid=f_gbdtb53u0&zw&saduie=AG9B_P9oeE0GxxdKQfZ7JKI4Dk9D&sadet=1318488478397&sads=dEFuXNk3XpNlgJhlyh4oZiqsgmE&sadssc=1

Scan vlc.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.