FLVplayer auto update malware

Applian Technologies Malware
We have an early version of FLV player installed on a few of our machines for handling FLV files; yesterday it prompted to be upgraded to the latest version from within the application. On agreeing to the update the software connected to a server (hxxp://files4.open-serve.info/download?s=Applian&c=flvplayer.us&brand=flvplayer.us&pid=Applian&bc=840895&country=AU&cb=379984693) and downloaded flvplayer-setup.exe (Applian Technologies Inc.)

This latest version is bundled with multiple ‘malware’ components (Snap.do and BreakingNews) which take some considerable time to work through to clean up if the update is run.

Scanned on VirusTotal
To get the details across a broad range of antivirus products we have checked the link and file with the online VirusTotal scanner. The following are the results;
* for the download URL Detection ratio: 3/39 : Malware site/Malicious site
* for the file Detection ratio: 4/47
– DrWeb Adware.Downware.644
– ESET-NOD32 Win32/DownloadAdmin.G
– Malwarebytes PUP.DownloadAdmin
– VIPRE DownloadAdmin (fs)
– ClamAV PUA: Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat.

Recommendation:
Dump this crap and use VLC Media Player to handle your FLV files (Applian FLV Player is a clone of VLC bundled with adware)

Advertisements
This entry was posted in security, software, Tech. Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s