» ajuqgrrm.dll
Overview
Analysis
File Details

ajuqgrrm.dll

VMware Workstation

The library ajuqgrrm.dll, “VMware P2V Helper DLL” has been detected as malware by 23 anti-virus scanners.

File name:

ajuqgrrm.dll

Publisher:

VMware, Inc.* (Invalid match)

Product:

VMware Workstation

Description:

VMware P2V Helper DLL

Version:

e.x.p build-290101

MD5:

e18ff2f51a97920d53282672e2121ada

SHA-1:

6ee21fd507923815fea8e7ef49276bf01165fa7c

SHA-256:

21ceeeb4462511169c64c22a316693e3e3d7b6ebce24011db000e313a66f1372

Scanner detections:

23 / 68

Status:

Malware

Analysis date:

4/24/2024 6:06:45 AM UTC (today)

Scan engine

Detection

Engine version

Agnitum Outpost

Trojan.Monder

7.1.1

AhnLab V3 Security

Trojan/Win32.Monder

2013.11.19

Avira AntiVirus

TR/Tracur.A.1507

7.11.114.70

avast!

Win32:Malware-gen

2014.9-151127

AVG

Generic35

2016.0.2913

Bitdefender

Gen:Variant.Kazy.291644

1.0.20.1655

Emsisoft Anti-Malware

Gen:Variant.Kazy.291644

8.15.11.27.08

ESET NOD32

Win32/TrojanDownloader.Tracur

9.9062

Fortinet FortiGate

W32/Krap.TRV!tr

11/27/2015

F-Secure

Gen:Variant.Kazy.291644

11.2015-27-11_6

G Data

Gen:Variant.Kazy.291644

15.11.22

IKARUS anti.virus

Trojan.Win32.Tracur

t3scan.2.2.29

Kaspersky

Trojan.Win32.Monder

14.0.0.1058

McAfee

Sefnit-FAL!E18FF2F51A97

5600.6569

Microsoft Security Essentials

Trojan:Win32/Tracur

1.163.1557.3

MicroWorld eScan

Gen:Variant.Kazy.291644

16.0.0.993

Norman

Kryptik.CCTD

11.20151127

Panda Antivirus

Trj/CI.A

15.11.27.08

Sophos

Mal/Tracur-AK

4.94

Total Defense

Win32/Tracur.ZHbBbOB

37.0.10498

Trend Micro House Call

TROJ_GEN.R028C0DKD13

7.2.331

Trend Micro

TROJ_GEN.R028C0DKD13

10.465.27

VIPRE Antivirus

Trojan.Win32.Generic

23486

File size:

496 KB (507,904 bytes)

Product version:

e.x.p build-290101

Original file name:

p2vHlpr.dll

File type:

Dynamic link library (Win32 DLL)

Language:

English (United States)

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\ajuqgrrm.dll

File PE Metadata

Compilation timestamp:

8/19/2010 4:50:30 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

CTPH (ssdeep):

12288:TM0rmXiSJB5RzwK8C6mgbDfT4Yl54UdPi2mQ:HSJBzr8XfT4Yl54UdPi2

Entry address:

0x100C

Entry point:

FC, 8D, 44, 24, 10, 29, F0, 75, 0A, FC, 3D, EF, 28, 04, 00, 74, 6A, EB, 68, 31, D2, 89, DA, 8B, 1C, 24, 4A, 48, 48, B8, 4E, 58, 00, 00, 40, 40, 66, 2B, 03, 89, D3, 43, 83, F0, 00, 75, 4C, 50, 48, 52, 39, C2, 74, 0D, 50, FC, 89, D0, BA, 72, 15, 08, 00, 01, D0, 40, 58, FC, B9, 26, 27, CD, 00, 51, 49, FC, 0F, C9, 41, FF, 11, 59, 5A, 0F, C9, 0F, C8, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, B9, AE, 03, 00, 00... 
[+]

Entropy:

4.4795

Code size:

256 KB (262,144 bytes)

Remove ajuqgrrm.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.