home

a0ttotuu.dll

The module a0ttotuu.dll has been detected as a potentially unwanted program by 16 anti-malware scanners.
Version:
1.0.0.0

MD5:
eb26091ed0c1d4e08e2acef583bbc4cc

SHA-1:
cf7e7499a3889cb9b09e645aabf9a2746cb800a4

SHA-256:
9f83ab2f59f2b3d8ee8d888cb64030d22ed880f3420a6f1c4272ca936eb25336

Scanner detections:
16 / 68

Status:
Potentially unwanted

Analysis date:
4/20/2024 9:48:39 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Adware.Linkury.M
5829208

AhnLab V3 Security
Adware/Win32.Linkury
2014.11.24

Avira AntiVirus
APPL/Linkury.iona
7.11.188.92

Bitdefender
Adware.Linkury.M
1.0.20.1635

Comodo Security
Application.MSIL.Linkury.I
20176

Dr.Web
Trojan.KillFiles.15040
9.0.1.05190

Emsisoft Anti-Malware
Adware.Linkury.M
9.0.0.4570

F-Prot
W32/A-c1c00d0f
v6.4.7.1.166

F-Secure
Adware.Linkury.M
11.2014-23-11_1

G Data
Adware.Linkury
14.11.24

IKARUS anti.virus
AdWare.Linkury
t3scan.1.8.3.0

MicroWorld eScan
Adware.Linkury.M
15.0.0.981

NANO AntiVirus
Trojan.Win32.Zapchast.dhguqj
0.28.6.63474

nProtect
Trojan/W32.Agent.86016.DRW
14.11.21.01

SUPERAntiSpyware
Adware.Zapchast/Variant
10219

Vba32 AntiVirus
Trojan.MSIL.Zapchast
3.12.26.3

File size:
84 KB (86,016 bytes)

Product version:
1.0.0.0

Original file name:
a0ttotuu.dll

File type:
Dynamic link library (Win32 DLL)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\a0ttotuu.dll

File PE Metadata
Compilation timestamp:
11/10/2014 3:38:46 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
1536:d++mIpcQnCyfVIzFGMXRXe8WvL9wtFk74RmFRKlUK7BP:dLmMv9YJhOvqtFk8RmFR+UK7BP

Entry address:
0x13A5E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
4.8060

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
72 KB (73,728 bytes)

Remove a0ttotuu.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.