home

Aviator_elf.dll

WhiteHat Aviator

WhiteHat Security, Inc.

The library Aviator_elf.dll has been detected as malware by 3 anti-virus scanners.
Publisher:
The Aviator Authors  (signed by WhiteHat Security, Inc.)

Product:
WhiteHat Aviator

Version:
37.0.2062.99

MD5:
618d4a9a49c0a6413504fc8ddcb5c938

SHA-1:
3b2bd4885c8b0f65bf955d849433399801a33f60

SHA-256:
23d40ea1f0bb8a97975bff8d4b96fd6dddccebb97ebef0f602d6e481f1847d88

Scanner detections:
3 / 68

Status:
Malware

Analysis date:
4/25/2024 1:12:34 PM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Floxif.H virus
6.3.12010.0

F-Prot
W32/Floxif.B
4.6.5.141

F-Secure
Win32.Floxif.A
5.15.154

File size:
206.9 KB (211,895 bytes)

Product version:
37.0.2062.99

Copyright:
Copyright 2014 The Aviator Authors. All rights reserved.

Original file name:
Aviator_elf.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\whitehat\aviator\application\aviator_elf.dll

Digital Signature
Signed by:
WhiteHat Security, Inc.

Authority:
DigiCert Inc

Valid from:
3/4/2014 4:00:00 PM

Valid to:
3/9/2016 4:00:00 AM

Subject:
CN="WhiteHat Security, Inc.", O="WhiteHat Security, Inc.", L=Santa Clara, S=California, C=US, PostalCode=95054, STREET=3970 Freedom Circle, STREET=Suite 200, SERIALNUMBER=3451827, OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, OID.2.5.4.15=Private Organization

Issuer:
CN=DigiCert EV Code Signing CA (SHA2), OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
02BEF915BC6E2C2695775F02E5BE7A6F

File PE Metadata
Compilation timestamp:
10/5/2014 10:28:35 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

Entry address:
0x7F66

Entry point:
E9, 26, C7, FF, FF, 0C, 01, 75, 05, E8, A2, 37, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 07, 00, 00, 00, 83, C4, 0C, 5D, C2, 0C, 00, 6A, 0C, 68, C8, B7, C3, 01, E8, 4B, 15, 00, 00, 33, C0, 40, 8B, 75, 0C, 85, F6, 75, 0C, 39, 35, CC, EB, C3, 01, 0F, 84, E4, 00, 00, 00, 83, 65, FC, 00, 83, FE, 01, 74, 05, 83, FE, 02, 75, 35, 8B, 0D, C0, 6C, C3, 01, 85, C9, 74, 0C, FF, 75, 10, 56, FF, 75, 08, FF, D1, 89, 45, E4, 85, C0, 0F, 84, B1, 00, 00, 00, FF, 75, 10, 56, FF, 75, 08, E8, 11, FE, FF, FF, 89, 45, E4...
 
[+]

Entropy:
7.2132

Packer / compiler:
tElock 0.99 - 1.0 private

Code size:
77.5 KB (79,360 bytes)

Remove Aviator_elf.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.