» bkumvbw.dll
Overview
Analysis
File Details

bkumvbw.dll

The module bkumvbw.dll has been detected as a potentially unwanted program by 22 anti-malware scanners.

File name:

bkumvbw.dll

MD5:

7228188e7a7448bb45be1a2d58730d51

SHA-1:

1c3d80a6f448b9bee8361194cb64cf9bf6084711

SHA-256:

896201ee7069123e8723191bac0c8332f6c99e9935cd6f716b0865a1081a01af

Scanner detections:

22 / 68

Status:

Potentially unwanted

Analysis date:

4/19/2024 7:23:15 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

DeepScan:Generic.Malware.FPYdPkg.04FBAA91

-41

AhnLab V3 Security

Malware/Win32.Generic.C1627800

3.8.3.16

Avira AntiVirus

TR/ATRAPS.Gen2

8.3.3.4

Arcabit

DeepScan:Generic.Malware.FPYdPkg.04FBAA91

1.0.0.802

avast!

MSIL:Kryptik-AQ [Trj]

2014.9-170316

AVG

Win32/DH{JFeBDiUe?}

2018.0.2437

Baidu Antivirus

Win32.Backdoor.Yobdam

4.0.3.17316

Bitdefender

DeepScan:Generic.Malware.FPYdPkg.04FBAA91

1.0.20.375

Emsisoft Anti-Malware

DeepScan:Generic.Malware.FPYdPkg.04FBAA91

8.17.03.16.12

ESET NOD32

Win32/Delf.TJF (variant)

11.15091

F-Secure

DeepScan:Generic.Malware.FPYdPkg.04FBAA91

11.2017-16-03_5

G Data

DeepScan:Generic.Malware.FPYdPkg.04FBAA91

17.3.A:25.11190B:25.9088

IKARUS anti.virus

Trojan.Win32.Delf

0.2.1.2

K7 AntiVirus

Trojan

13.10.5.22721

Malwarebytes

RiskWare.GameHack

v2017.03.16.12

Microsoft Security Essentials

Trojan:Win32/Startpage!rfn

1.1.13504.0

MicroWorld eScan

DeepScan:Generic.Malware.FPYdPkg.04FBAA91

18.0.0.225

Panda Antivirus

Trj/Genetic.gen

17.03.16.12

Qihoo 360 Security

HEUR/QVM37.0.0000.Malware.Gen

1.0.0.1120

Rising Antivirus

Malware.Generic.5!tfe (thunder:5:pKp9sR0IeXO)

23.00.65.17314

Sophos

Mal/EncPk-RG

4.98

Vba32 AntiVirus

suspected of Trojan.Downloader.gen.h

3.12.26.4

File size:

864.5 KB (885,248 bytes)

File type:

Dynamic link library (Win32 DLL)

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\bkumvbw.dll

File PE Metadata

Compilation timestamp:

6/20/1992 6:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

Entry address:

0xCDACC

Entry point:

B8, B4, FF, 57, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, C4, 13, AF, A6, 83, C8, D6, BB, 7D, 0B, CF, 4E, 14, 16, 33, 44, D7, CD, 4D, 01, 02, 4C, 92, FD, B3, CE, D4, 65, CE, 77, D9, EA, B7, 72, 88, EE, 5E, AF, 9A, 03, 87, ED, 17, 43, 0B, FC, 82, E1, F2, 17, D8, F5, 00, EA, 66, A0, 0F, 72, 25, 51, 9B, 29, 7A, 32, EA, 5C, 80, C5, 63, AF, 00, 67, 62, C5, 12, D6, 22, 1C, 74, CA, 4E, 25, 91, 2F, 3B, FB, 03, 6E, 04, BB, 00, 6B, 6D... 
[+]

Entropy:

7.9960

Packer / compiler:

PECompact v2

Code size:

819 KB (838,656 bytes)

Remove bkumvbw.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.