Jump to content

Lynx.exe from Lynx System Developers flagged as Malware.Heuristic.1006


truk
 Share

Recommended Posts

 

Tonight I installed FinishLynx 12.00 from https://www.finishlynx.com/download/software-downloads/finishlynx-software/FinishLynx-12.00.exe

The web page I downloaded it from is https://www.finishlynx.com/product/software/finishlynx-results-software/

The resulting C:\Lynx\Lynx.exe that was extracted caused Malwarebytes to flag it as Malware.Heuristic.1006 when I first tried to run it after install.

I suspect this is a False-Positive (because I have Malwarebytes' paranoid settings enabled).

 

At VirusTotal (VT), I uploaded Lynx.exe and VT reported "No security vendors and no sandboxes flagged this file as malicious"

However, after I uploaded the installer (FinishLynx-12.00.exe) to VT, 4/69 scanners at VT flagged FinishLynx-12.00.exe as follows...

Bkav Pro: W32.AIDetect.malware2

SecureAge APEX: Malicious

NANo-Antivirus: Trojan.Win32.Inject.duswok"

VBA32: Trojan.Inject

----------------

VirusTotal SCAN DETAILS:

ff814e481c4730febedf514712dd1de2b29fa6338f6b41c48f3f95bea575e23

direct-cpu-clock-access    overlay    peexe    runtime-modules

===========

At Jotti's malware scan, only one scanner (VBA32) flagged FinishLynx-12.00.exe as Trojan.Inject

Name:FinishLynx-12.00.exe 

Size: 3.31MB (3,465,946 bytes) 

Type:PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive 

First seen: May 5, 2022 at 4:37:26 AM GMT+2

MD5:772a5a6b18e94652c5af16498b8cf3ad 

SHA1:85e2ec74b60527dc3c7c54dbb392f2dc310e9c6c

----------------

Jotti's found nothing for Lynx.exe

Name:Lynx.exe 

Size: 2.64MB (2,764,800 bytes) 

Type:PE32 executable (GUI) Intel 80386, for MS Windows 

First seen: May 5, 2022 at 4:35:28 AM GMT+2

MD5:499dd2c09439c08cbe9fe5d011b41c39 

SHA1:9df287058a8469df3ab3f3e8f8576608210c3cd9 

============

Lynx System Developers is a long-established Track & Field "Fully Automated Timing" (FAT) hardware/software vendor.

Their home page is https://www.finishlynx.com/

 

Please advise after you investigate this.

Thank you.

-Kurt

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.