home

browser.dll

Skymonk Solutions Limited

The module browser.dll by Skymonk Solutions Limited has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Skymonk Solutions Limited  (signed and verified)

MD5:
1fe3ec7238e5fc2111dd3c283e9f160b

SHA-1:
0acdc12fdcd4c69898b9c82ad69d9778225a31d8

SHA-256:
80a944eff66043081ee0c5f41efe02f811aaf389a42e2b779105a8458d0d7399

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
4/19/2024 4:30:18 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.3.9.7

File size:
19 MB (19,874,960 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\skymonk2\updates\2.16.2\browser.dll

Digital Signature
Signed by:
Skymonk Solutions Limited

Authority:
VeriSign, Inc.

Valid from:
4/9/2012 3:00:00 AM

Valid to:
4/10/2015 2:59:59 AM

Subject:
CN=Skymonk Solutions Limited, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Skymonk Solutions Limited, L=Tortola, S=Tortola, C=VG

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
632A5F301191DF03C4933D982BAD525F

File PE Metadata
Compilation timestamp:
3/13/2013 3:36:21 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
9.0

Entry address:
0x192A15

Entry point:
23, F9, 0B, EF, 03, DD, 89, 1E, 8B, 4E, 04, 83, C0, 04, 89, 44, 24, 20, 8B, 00, 83, C6, 04, 89, 4C, 24, 24, 8B, C8, C1, E9, 18, 0F, AF, CA, C1, E9, 08, 8B, D8, BF, 00, 01, 00, 00, 2B, F9, 8B, 0D, 24, 45, F2, 10, C1, EB, 08, 23, C1, 23, D9, 0F, AF, C2, 0F, AF, DA, 8B, E9, F7, D5, 23, DD, C1, E8, 08, 23, C1, 0B, D8, 8B, 44, 24, 24, 8B, E8, C1, ED, 08, 23, E9, 0F, AF, EF, 89, 7C, 24, 10, 8B, F9, F7, D7, 23, EF, 8B, F9, 23, F8, 0F, AF, 7C, 24, 10, C1, EF, 08, 23, F9, 0B, EF, 03, DD, 8B, 6C, 24, 20, 83, C5, 04...
 
[+]

Code size:
15 MB (15,711,744 bytes)

Remove browser.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.