The recommended software is malicious. Why is it malicious?

We have a new machine and when working to get approval from our information services (IS) team, we were denied as their scan said it was malicious. Please see their analysis below and provide guidance on next steps. I can set a quick teams meeting if it would help to describe this to the IS team.
https://www.hybrid-analysis.com/sample/b141d168212b2f4a2b15a5ef3ac19d06e4301fedde112044786f0263edd4c36a/65a822948b1ca7c94502a557

For context, these are the two results that have us concerned. These go above and beyond virus scanning and analyze behavior of the application.

There’s no big surprise that it’s accessing the registry. It’s installing our thumbnail handler. It spawns executables that install Visual Studio redistributable packages from Microsoft, and check your license key information to verify that the version you’re installing will run with the license you have.

If there are any specific items in this list that are of concern, please point them out and I’ll let you know why they’re there, but there are hundreds of things in this list, and everything I can see so far has a valid use case either for installation of the software, our license system enforcement, or just normal execution.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.