home

3d5e94bedf0b459ebb7645fc46600e3e.dll

MD5:
9a9d9652eb1e18d6e2549902bccaec08

SHA-1:
c6ba3b7d26a2ebaf07f4906c3e7ae47f499f1a84

SHA-256:
b99c633828b47a93bb3a2b971781121b37c7abe9785a2e2dc7ac94f6715f4833

Scanner detections:
4 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/26/2024 9:27:20 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Crypt.XPACK.Gen
7.11.30.172

Bkav FE
W32.HfsAutoA
1.3.0.4959

Comodo Security
Heur.Packed.Unknown
19360

Quick Heal
(Suspicious) - DNAScan
8.14.14.00

File size:
66 KB (67,584 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\temp\3d5e94bedf0b459ebb7645fc46600e3e.dll

File PE Metadata
Compilation timestamp:
10/30/2016 9:28:49 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

CTPH (ssdeep):
1536:cqd9V4IFnJFjACgL58IZdYKMt0yAp7faLhaLQwtUA/tYZl9SbTLTiVI:cqd9qIFJFsVLdYKMt0yWiLhaLQ0N+ZlO

Entry address:
0x14000

Entry point:
E9, 4F, 0B, 00, 00, 2E, 27, 80, 67, C4, DC, 61, EB, 07, E5, 8C, 50, 80, A6, 3D, E9, 0E, 43, C9, 8A, 19, B2, 16, 12, 96, 26, 03, B9, 8F, A0, 1E, 23, 66, A6, 8D, DE, 12, 28, C4, D9, 16, EA, 3A, D7, D3, C2, 13, 41, 8E, 71, 6A, 3B, 23, 90, 51, 7B, 11, 6D, D0, 9D, D9, A7, 5C, 66, C7, 68, EA, DA, 19, 5E, D7, E6, 7E, EF, 73, 2E, 78, 3E, 3F, D4, 13, C2, 2B, 1D, 36, E2, 00, D5, 54, 11, CD, A4, 57, 27, 00, 6E, 8E, D3, 10, 6A, D8, 39, 28, 2F, 9A, 83, BC, 33, B9, 03, AE, 00, 2F, 50, 58, 70, 02, 50, 58, B9, E4, C1, B2...
 
[+]

Entropy:
7.0748

Packer / compiler:
Xtreme-Protector v1.05

Code size:
595 MB (623,870,229 bytes)

Scan 3d5e94bedf0b459ebb7645fc46600e3e.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.