home

4bbb8fadfcc74c03863ab259f29b9a62.dll

MD5:
8472fa08842587448cfcf9897478777f

SHA-1:
17b3fd2674637d17cf0cb4b7a75ff2592ed905fb

SHA-256:
e358bf54e5f77b71c86038d521d2f7c0ca5da4266daa86b0a9794470b377c3e3

Scanner detections:
5 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
5/10/2024 9:00:31 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Crypt.XPACK.Gen
7.11.30.172

Bkav FE
W32.HfsAutoA
1.3.0.4959

Comodo Security
Heur.Packed.Unknown
19353

Qihoo 360 Security
Malware.QVM39.Gen
1.0.0.1015

Quick Heal
(Suspicious) - DNAScan
8.14.14.00

File size:
63.5 KB (65,024 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\temp\4bbb8fadfcc74c03863ab259f29b9a62.dll

File PE Metadata
Compilation timestamp:
12/1/2008 10:23:48 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

CTPH (ssdeep):
1536:+KG+loIk8QChPlQyMybeKVVIDxUDbBL5fep:P7k8QChPlQyfeKVOAlLZy

Entry address:
0x11000

Entry point:
E9, F2, 0A, 00, 00, C6, 45, DE, 46, CD, 2C, 9F, 6C, 1C, 73, 56, 78, 5F, 36, 52, A7, 9A, 71, 20, C8, AC, 42, C1, C6, 0E, 78, C1, 63, 93, 3D, 45, 6D, 8F, 85, 56, 47, A3, CE, BB, 11, 77, EC, 34, E0, 1B, 0F, 50, AD, 28, 0D, 94, 87, 09, BB, F0, 84, 84, 18, 37, 54, 6A, 3B, D9, DF, 2E, E9, E9, D9, DF, 0B, 03, CB, B6, 0E, 50, C0, 0E, E0, AA, FE, 28, 13, 3A, 86, A8, BD, 64, D4, 95, D2, C2, 8B, 96, 66, A6, 3C, 12, 54, B2, 32, 26, 77, CE, 1D, 09, C9, D0, FA, 6A, 30, 76, A4, 6D, 39, 2C, 56, 00, 52, 37, 70, 84, 14, 44...
 
[+]

Entropy:
7.1923

Packer / compiler:
Xtreme-Protector v1.05

Code size:
520.2 MB (545,474,421 bytes)

Scan 4bbb8fadfcc74c03863ab259f29b9a62.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.