search

steveway / papagayo-ng

Papagayo is a lip-syncing program designed to help you line up phonemes (mouth shapes) with the actual recorded sound of actors speaking. Papagayo makes it easy to lip sync animated characters by making the process very simple - just type in the words being spoken (or copy/paste them from the animation's script), then drag the words on top of the sound's waveform until they line up with the proper sounds.
http://steveway.github.io/papagayo-ng/
18 stars 3 forks source link

Both Kaspersky and Emsisoft say the EXE is performing suspicious actions characteristic of Malware #42

Open T-oasterO-ven opened 1 year ago

T-oasterO-ven commented 1 year ago

From Kaspersky a bit after launch, and a bit after performing Allosaurus (eng2102) lip-sync:

Event: Malicious object detected
Application: Lip-Sync Software
User: *********
User type: Initiator
Component: System Watcher
Result description: Detected
Type: Trojan
Name: PDM:Trojan.Win32.Generic
Threat level: High
Object type: Process
Object path: C:\Program Files (x86)\Papagayo-NG
Object name: papagayo-ng.exe
MD5: 8D6BE0AB06EE7C48F56FCC058BD4F387
Reason: Behavior analysis
Databases release date: Today, 5/15/2023 12:03:00 PM

2nd Opinion From Emsisoft immediately after the console opens (no logo pops up until I click "Wait, I think this is safe" and restart):

5/15/2023 5:21:04 PM
Behavior Blocker detected suspicious behavior "HiddenInstallation" of C:\Program Files (x86)\Papagayo-NG\papagayo-ng.exe (SHA1: 2ED12B349535EBDDD7F0AC4E2F0AFDFAA4554BCA)

5/15/2023 5:21:22 PM
A notification message "Suspicious behavior has been found in the following program: C:\Program Files (x86)\Papagayo-NG\papagayo-ng.exe" has been shown

5/15/2023 5:21:31 PM
User "*********" clicked "Wait, I think this is safe"
Hunanbean commented 1 year ago

That is most likely because it downloads ffmpeg and other things, at your request (click). There really is nothing it does that is harmful.