» {6f78eec7-ac47-f6be-36e5-99ef7145b691}-asmct217a.dll
Overview
Analysis
File Details

{6f78eec7-ac47-f6be-36e5-99ef7145b691}-asmct217a.dll

The library {6f78eec7-ac47-f6be-36e5-99ef7145b691}-asmct217a.dll has been detected as malware by 11 anti-virus scanners.

File name:

MD5:

07092c31b7bf3d11d6b8e281d492cc51

SHA-1:

967615104f0291854ef94de9e09c3057c23f3614

SHA-256:

311871fe4bb6a2dfd6837a96934bb2a06f59385f9f661eca15a4d73f1eae59c1

Scanner detections:

11 / 68

Status:

Malware

Analysis date:

4/26/2024 3:52:47 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Symmi.23294

872

Avira AntiVirus

TR/Crypt.TPM.Gen

7.11.30.172

Bitdefender

Gen:Variant.Symmi.23294

1.0.20.1290

Emsisoft Anti-Malware

Gen:Variant.Symmi.23294

14.09.15

F-Prot

W32/A-30103c76

v6.4.7.1.166

F-Secure

Gen:Variant.Symmi.23294

11.2014-15-09_2

G Data

Gen:Variant.Symmi.23294

14.9.24

IKARUS anti.virus

Trojan.Crypt_s

t3scan.1.7.8.0

McAfee

Trojan-FDNK!7B11DAAFE798

5600.7006

MicroWorld eScan

Gen:Variant.Symmi.23294

15.0.0.774

Quick Heal

(Suspicious) - DNAScan

9.14.14.00

File size:

787.5 KB (806,400 bytes)

File type:

Dynamic link library (Win64 DLL)

Common path:

C:\ProgramData\microsoft\microsoft antimalware\localcopy\{6f78eec7-ac47-f6be-36e5-99ef7145b691}-asmct217a.dll

File PE Metadata

OS bitness:

Win64

CTPH (ssdeep):

24576:LXs6YbHAD1BuLo6PxQNPjdYZ8Js3F4dyyRspABReE9:LYHA5BuL1k5Q8JKFjye4

Entry point:

B2, A5, 6F, FF, FC, FF, FF, FF, FB, FF, FF, FF, 00, 00, FF, FF, 47, FF, FF, FF, FF, FF, FF, FF, BF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FF, FE, FF, FF, F1, E0, 45, F1, FF, 4B, F6, 32, DE, 47, FE, B3, 32, DE, AB, 97, 96, 8C, DF, 8F, 8D, 90, 98, 8D, 9E, 92, DF, 9C, 9E, 91, 91, 90, 8B, DF, 9D, 9A, DF, 8D, 8A, 91, DF, 96, 91, DF, BB, B0, AC, DF, 92, 90, 9B, 9A, D1, F2, F2, F5, DB, FF, FF, FF, FF, FF, FF, FF... 
[+]

Entropy:

7.8914 (probably packed)

Remove {6f78eec7-ac47-f6be-36e5-99ef7145b691}-asmct217a.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.