PngOut.exe - Flagged as Unsafe By Dell Advanced Threat Prevention

Ask for help and post your question on how to use XnView Classic.

Moderators: XnTriq, xnview

Post Reply
tdhca-eddie
Posts: 1
Joined: Mon Sep 10, 2018 10:08 pm

PngOut.exe - Flagged as Unsafe By Dell Advanced Threat Prevention

Post by tdhca-eddie » Mon Sep 10, 2018 10:50 pm

Cylance flags the pngout.exe included in v2.46 as being "bad" whereas the v2.45 release did not cause this to happen. Looks like 95% of customers of Cylance are placing this file in quarantine. Were there any changes made to this program in the recent release? Can you verify the SHA256 hash to confirm that the installer I obtained was the same one you posted?

https://www.virustotal.com/en/file/843f ... /analysis/ - SHA256 hash uploaded here

"This object may contain modifiable code and implies that the object was built using a non-standard compiler or was modified after it was originally built. While some organizations may create and use software built using these techniques, this is not the industry standard."

"This object imports functions that can modify the memory of a running process. Malware does this to inject itself into running processes. By injecting into a process, malware could copy something to memory (like a dynamic link library or DLL) and instruct the process to execute it."

User avatar
xnview
Author of XnView
Posts: 30122
Joined: Mon Oct 13, 2003 7:31 am
Location: France
Contact:

Re: PngOut.exe - Flagged as Unsafe By Dell Advanced Threat Prevention

Post by xnview » Tue Sep 11, 2018 7:30 am

it's the same as previous version, the sha256 is good
Pierre.

Post Reply