No concern. But if you don't plan to use it as a way to access your system remotely, simply don't run it. It isn't needed unless you use that particular program.
It is how the "unknown Publisher" or "potential virus" or "compromised" messages are generated (just called virus moving forward in the rest of this post for simplicity).
It is not a virus, rather it is whatever antivirus you are using has flagged it as a potential virus. Some programs look at the total number of users and below a certain number, it is flagged. These specialty type files/programs get false positives all the time.
You can check the file with
VirusTotal , an antivirus website owned by Google that runs it thru a lot of different antivirus algorithms.
I just installed 5.9.4.0 on two of my BI servers, and my security software, WebRoot, immediately flagged NGROK.EXE at %temp%\pft7d4b.tmp\ as W32.Malware.Gen. I immediateliy rolled back to 5.9.3.4 and scanned both machines, to be safe. Is this a false positive? Does a perfectly safe NGROK.EXE...
ipcamtalk.com