home

b36707aeeb514220a6196b6249471c83.dll

MD5:
6c9e85e837dd123f44f39db549851d6a

SHA-1:
22725bbd37ba04ec7e47745c818fbb0164be59e6

SHA-256:
8e9eec9bdad6ff49a6bc60baafafcce797c1459f7735a6f624d812a080bd57b4

Scanner detections:
4 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/27/2024 1:26:24 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Crypt.XPACK.Gen
7.11.30.172

Bkav FE
W32.HfsAutoA
1.3.0.4959

Comodo Security
Heur.Packed.Unknown
19353

Quick Heal
(Suspicious) - DNAScan
8.14.14.00

File size:
93.5 KB (95,744 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\temp\b36707aeeb514220a6196b6249471c83.dll

File PE Metadata
Compilation timestamp:
4/12/2014 9:04:46 AM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

CTPH (ssdeep):
1536:+F388WhcmFhMuVduKkyJWJv7faLhzpLQCAVEf7JD2bTLtIBqUEtZjjUYtrduAE:t1hNduKkyJWJjiLhzpLQCx7MXL7vZjIV

Entry address:
0x16000

Entry point:
E9, F6, 05, 00, 00, 3F, 35, 6C, 39, BC, 2C, 7E, 94, 37, 37, 6C, F8, 7A, 88, 09, 8D, D3, 72, 60, EF, 3A, 3D, DF, F5, C5, A0, 7C, D2, 1A, 39, 91, 6A, 27, 18, 92, A1, C7, 8A, 1D, 29, 13, 01, B1, 66, AA, E6, 5A, 28, B8, DE, 44, DE, 52, 16, A5, 01, 56, 76, 74, 1B, B0, AB, 7A, FE, A5, 02, D0, 61, F6, 67, C6, 48, 55, 37, DC, 38, 05, 4B, FC, 3F, 14, 79, 02, 33, D2, 7E, 02, 33, F6, 53, 5B, 81, C6, 79, C3, 66, 32, 76, 02, 33, C9, 50, 58, 81, C3, 50, A6, 1E, 4C, 7E, 06, 81, C1, 3A, 0C, E0, 0A, 85, F6, 7E, 02, 33, FF...
 
[+]

Entropy:
7.4491

Packer / compiler:
Xtreme-Protector v1.05

Code size:
212.5 MB (222,818,663 bytes)

Scan b36707aeeb514220a6196b6249471c83.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.