home

assleech.dll

MD5:
7dc0f37190083ce063081011d4578d62

SHA-1:
104c31915b1e1c33e580e3dd9acd755bf6edf87c

SHA-256:
6bc78ee295f9b6483c64792a415d4df2f0aba6fb0a0f8e2bb023231845dd0d5b

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
5/22/2024 5:00:43 AM UTC  (today)

Scan engine
Detection
Engine version

AVG
Win32/Blacked
2015.0.4556

ESET NOD32
Win32/Packed.VMProtect.ABO trojan
8.0.319.0

File size:
153.5 KB (157,184 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\downloads\assleech.dll

File PE Metadata
Compilation timestamp:
4/23/2016 8:27:14 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
14.0

CTPH (ssdeep):
3072:XfMdbDVsYaZVxpBMt15/Zh88Uqi+j/OrB8yn1VXxQOQ2NB/5ub:vaDYit15/Zh88y+6V8+XB/5ub

Entry address:
0x1137FD

Entry point:
E9, 88, 02, 01, 00, 8C, 05, 98, 60, 52, F6, 24, D8, 9C, E0, 31, 0C, 06, 61, 42, 7F, 40, 2F, E3, 51, E8, 25, 88, 05, 5B, B1, 15, 1A, 3C, B2, A9, BE, 10, EC, E8, CD, 23, E7, 48, 93, 9D, EF, 0F, 2B, B5, 5A, B5, 93, 28, 37, 3B, 62, E6, 31, 95, BF, 52, 89, FC, EB, 70, 4C, 61, DB, 31, D0, D3, FA, AC, 77, 4E, 5F, 5C, F2, E1, 77, 05, 02, 71, 93, 8A, 1A, 39, 3F, A1, BF, 18, 07, 9D, E7, 6E, 58, B9, DE, 37, 74, C3, 75, 3A, F8, BD, 7B, D8, 88, 51, 85, F4, EE, 9D, F4, A0, 05, 97, BE, D2, CF, 02, 6B, 5F, 16, 8C, 06, C2...
 
[+]

Entropy:
7.4747

Packer / compiler:
Xtreme-Protector v1.05

Code size:
23 KB (23,552 bytes)

The file assleech.dll has been seen being distributed by the following URL.

https://ln.syncusercontent.com/mfs-22121ba675233266bdac201a27df903d4b66b49b7b8c303ab57f5f2788f7f1185/p/Assleech.dll?sharelink_id=179602110008&linkoid=8000008&linkcachekey=962577d80&datakey=DguFQP4hq6IIv/RHKbKcTlLxij5eUsjc6mnAu CBl ctXmUO78YrIuJDRxxnYUP4cDeDJRpVbImefGjCNWF8We7lZiMe6 8q4DtrBieqyTApn50LRdwklPwlpV1EWTARtyZUcFJsUVPSzYwh/KJDAzkVf6URAsa/gKciIerJY wJvT0d4Uau/SYqTqvOiPRpgZdq0z4z1uM2WdKM86b1ONPhf5n1G3xhKi03FdABegjko20koowfGwm29m/Lb3Prd7zq97bzhwE8wH07nIPgrmaf5PeXqz02F7okXq74GN3XjnDjS/.../aflkTvwyBGcw&mode=100&header1=Q29udGVudC1UeXBlOiBhcHBsaWNhdGlvbi9vY3RldC1zdHJlYW0&header2=Q29udGVudC1EaXNwb3NpdGlvbjogYXR0YWNobWVudDsgZmlsZW5hbWU9IkFzc2xlZWNoLmRsbCI

Scan assleech.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.