Pidgin2.12.0.exe File Shows as Virus

Christina Barker chris19200815 at live.com
Mon Jan 22 13:40:51 EST 2018


Upon scanning the Pidgin2.12.0.exe file using VirusTotal 2 vendors show that this executable contains malware (see link to report below). Furthermore the signature chain to validate the authenticity of this download is also broken as one of the certificates expired over 6 months ago. I confirmed this is true for files served up by at least 3 of the mirrors in use.

Can someone please confirm where I can download a clean and properly certified copy of the executable from?

Thanks!

https://www.virustotal.com/en/file/ad2e65a2b968e2f0ce08bbe9227ab2ba314df6e869f22848fcc4b68783cb40cc/analysis/1516532140/

Signers

[+] Open Source Developer, Daniel Atallah<https://www.virustotal.com/en/file/ad2e65a2b968e2f0ce08bbe9227ab2ba314df6e869f22848fcc4b68783cb40cc/analysis/1516532140/>
Status This certificate or one of the certificates in the certificate chain is not time valid.
Issuer Certum Code Signing CA SHA2
Valid from 8:55 PM 6/19/2016
Valid to 8:55 PM 6/19/2017
Valid usage Code Signing
Algorithm sha256RSA
Thumbprint D3AD05E6A0DD4B777829B84CF8E371181ACD04A7
Serial number 5C C5 71 21 D5 6F 9C CD B9 90 C4 11 89 AE 4C 0D
[+] Certum Code Signing CA SHA2<https://www.virustotal.com/en/file/ad2e65a2b968e2f0ce08bbe9227ab2ba314df6e869f22848fcc4b68783cb40cc/analysis/1516532140/>
[+] Certum Trusted Network CA<https://www.virustotal.com/en/file/ad2e65a2b968e2f0ce08bbe9227ab2ba314df6e869f22848fcc4b68783cb40cc/analysis/1516532140/>

Counter signers

[+] COMODO SHA-256 Time Stamping Signer<https://www.virustotal.com/en/file/ad2e65a2b968e2f0ce08bbe9227ab2ba314df6e869f22848fcc4b68783cb40cc/analysis/1516532140/>
[+] USERTrust (Code Signing)<https://www.virustotal.com/en/file/ad2e65a2b968e2f0ce08bbe9227ab2ba314df6e869f22848fcc4b68783cb40cc/analysis/1516532140/>




Christina Barker
GSEC, GCFE, GCIH, GNFA

[Template_GSEC]<https://www.youracclaim.com/badges/7c0a122a-c1df-4e50-a2b2-fb304087c1b2>  [Template_GCFE] <https://www.youracclaim.com/badges/c714b60b-774a-4731-ad06-21545a2a99a9>   [Template_GCIH] <https://www.youracclaim.com/badges/60b33f8a-a7fd-4c74-b4be-e5d73cf9ec15>    [GIAC Network Forensic Analyst (GNFA)]

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://pidgin.im/pipermail/support/attachments/20180122/a9f6e16b/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 6682 bytes
Desc: image001.png
URL: <https://pidgin.im/pipermail/support/attachments/20180122/a9f6e16b/attachment-0004.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image002.png
Type: image/png
Size: 6462 bytes
Desc: image002.png
URL: <https://pidgin.im/pipermail/support/attachments/20180122/a9f6e16b/attachment-0005.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image003.png
Type: image/png
Size: 6611 bytes
Desc: image003.png
URL: <https://pidgin.im/pipermail/support/attachments/20180122/a9f6e16b/attachment-0006.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image004.png
Type: image/png
Size: 7168 bytes
Desc: image004.png
URL: <https://pidgin.im/pipermail/support/attachments/20180122/a9f6e16b/attachment-0007.png>


More information about the Support mailing list