home

agat.dll

MD5:
538ab4c54354bfeb8f7d57c60fb01697

SHA-1:
82a8d7ca5c04dabd904c1229e5c17428dc2a1e8a

SHA-256:
d701b0462ddbaac7b981f1b95ec5062d5ccd1a2f7a14b3acd47b024d29a08d9a

Scanner detections:
4 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
5/12/2025 7:43:33 AM UTC  (today)

Scan engine
Detection
Engine version

Comodo Security
UnclassifiedMalware
16572

IKARUS anti.virus
Backdoor.Win32.LQS
t3scan.2.0.3.0

Kaspersky
Backdoor.Win32.LQS
14.0.0.4357

Trend Micro House Call
TROJ_GEN.RCEH1GD
7.2.36

File size:
943.5 KB (966,144 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\firefox\data\profile\extensions\{75364a75-0650-4ca5-8ad1-d525dc17a1e4}\components\agat.dll

File PE Metadata
Compilation timestamp:
2/10/2011 6:31:05 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:0lmerentJj3pU/9IwPFNxHc382a9CjGE5ep5iDWIeBqqzRkpB9TWJPB3D:6r8MxHct4mW6pHTWJ53D

Entry address:
0x7650B

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 5F, 83, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, CC, CC, 8B, 4C, 24, 04, F7, C1, 03, 00, 00, 00, 74, 24, 8A, 01, 83, C1, 01, 84, C0, 74, 4E, F7, C1, 03, 00, 00, 00, 75, EF, 05, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8B, 01, BA, FF, FE, FE, 7E, 03, D0, 83, F0, FF, 33, C2, 83, C1, 04, A9, 00, 01, 01, 81, 74, E8, 8B, 41, FC, 84, C0, 74, 32, 84, E4, 74, 24, A9, 00, 00, FF, 00, 74, 13, A9...
 
[+]

Entropy:
6.6709

Code size:
607.5 KB (622,080 bytes)

Scan agat.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.