home

442n907n822d686.dll

The library 442n907n822d686.dll has been detected as malware by 4 anti-virus scanners.
MD5:
142137fcf85c65fcead4e829bd3dc850

SHA-1:
b30028d3d113f9861ccfe6f74b332341d608981f

SHA-256:
4cb3138bbf02d19faf75f857c41393c805c8d605b02d1508aef2b91ba31fd421

Scanner detections:
4 / 68

Status:
Malware

Analysis date:
4/30/2024 10:22:44 AM UTC  (today)

Scan engine
Detection
Engine version

AhnLab V3 Security
Malware/Win64.Generic.C1847108
3.8.3.16

ESET NOD32
Win64/Wdfload (variant)
11.15096

Malwarebytes
Trojan.Wdfload.Generic
v2017.03.16.09

Rising Antivirus
Malware.Generic.5!tfe (thunder:5:rABtW8tGcPB)
23.00.65.17314

File size:
2.9 MB (3,090,432 bytes)

File type:
Dynamic link library (Win64 DLL)

Common path:
C:\ProgramData\442n907n822d686\442n907n822d686.dll

File PE Metadata
Compilation timestamp:
3/13/2017 8:44:34 AM

OS version:
4.0

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
2.27

Entry address:
0x1A400

Entry point:
48, 83, EC, 48, 48, 8B, 05, 45, 4C, 2B, 00, 83, FA, 01, C7, 00, 00, 00, 00, 00, 74, 0A, 48, 83, C4, 48, E9, A1, FE, FF, FF, 90, 4C, 89, 44, 24, 38, 89, 54, 24, 34, 48, 89, 4C, 24, 28, E8, 6D, 15, 00, 00, E8, 78, 4D, FF, FF, 4C, 8B, 44, 24, 38, 8B, 54, 24, 34, 48, 8B, 4C, 24, 28, 48, 83, C4, 48, E9, 71, FE, FF, FF, 90, 48, 83, EC, 58, 4C, 8D, 05, 65, 4C, 2A, 00, 48, 8D, 44, 24, 40, 4C, 8D, 4C, 24, 4C, 48, 89, 44, 24, 20, E8, 61, 15, FF, FF, 89, C2, 83, E2, 07, 83, FA, 05, 77, 77, 48, 8D, 0D, 80, CB, 2A, 00...
 
[+]

Code size:
2.7 MB (2,872,832 bytes)

Scheduled Task
Task name:
442n907n822d686

Trigger:
Daily (Runs daily at 11.00)


Remove 442n907n822d686.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.