home

buddha.dll

MD5:
5c28d078e0abcd8aa1a12fba919eca78

SHA-1:
cb3efcf50afb602f90ac058a305248e06381d6b6

SHA-256:
e5c27c0857e364447d27b1a70094eea191ff79b0f5a6014794c112149219d996

Scanner detections:
3 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/25/2024 7:16:09 PM UTC  (today)

Scan engine
Detection
Engine version

Kaspersky
Trojan.Win32.Agent.neyamq
15.0.2.529

Sophos
Mal/VMProtBad-A
4.97

ViRobot
Trojan.Win32.A.ShipUp.64512.B
2011.4.7.4223

File size:
63 KB (64,512 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\2k games\borderlands 2\binaries\win32\buddha.dll

File PE Metadata
Compilation timestamp:
9/18/2012 6:58:39 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
5.12

CTPH (ssdeep):
768:DpnnGmwcF2ByGT4FGHHyMe3ABt4sUcxk65yDoKvmLUP1SbMuSIqPfORiqNNXQdRE:4mwcloyM8Wtjd7Gp5SbM5dyiqNRriF

Entry address:
0xCD54

Entry point:
E9, E6, 7D, 00, 00, E9, 7B, A7, 00, 00, 00, 00, 4C, 6F, 63, 61, 6C, 41, 6C, 6C, 6F, 63, 00, 8D, 64, 24, 28, 0F, 87, 8C, 9D, 00, 00, F8, 60, 69, D2, 0A, 00, 00, 00, F5, 01, C2, FF, 34, 24, 9C, 88, 1C, 24, 8D, 64, 24, 28, E9, AB, F7, FF, FF, 9C, C7, 44, 24, 04, 40, 18, D2, 05, E8, 62, F7, FF, FF, 55, 60, 31, C9, 68, 9D, 9F, 93, 34, E9, 8E, F3, FF, FF, F9, 01, C2, 9C, 88, 1C, 24, 9C, 8D, 64, 24, 30, E9, 7E, F7, FF, FF, 20, E9, 97, 7D, 40, 98, 5C, 64, C6, 56, 10, 69, E9, 4C, F8, A5, 3B, 13, 1C, AB, A3, B4, BA...
 
[+]

Entropy:
7.7071

Packer / compiler:
Xtreme-Protector v1.05

Code size:
2.5 KB (2,560 bytes)

The file buddha.dll has been discovered within the following programs.

Batman: Arkham Asylum  by Eidos Interactive Limited
Publisher's description - “Batman: Arkham Asylum is a single player, third-person action/adventure in which the Dark Knight is forced to take on his greatest challenge yet when he is trapped by arch rival, the Joker, within Gotham City's facility for the criminally insane, Arkham Asylum.”
www.Eidos.com
3% remove it
Borderlands  by 2K Games
Borderlands is an action role-playing first-person shooter video game, that was developed by Gearbox Software. Borderlands includes character-building elements found in role-playing games, leading Gearbox to call the game a "role-playing shooter".
www.borderlandsthegame.com
5% remove it
Borderlands 2  by Gearbox Software
Borderlands 2 is an action role-playing first-person shooter video game that was developed by Gearbox Software and published by 2K Games.
www.borderlands2.com
1% remove it
Borderlands 2 - GOTY Edition  by 2K Games
Publisher's description - “With the Borderlands 2 Game of the Year Edition, players can experience every epic boss battle, increase the level for each of the six playable Vault Hunters, play all of the additional campaign content, and enjoy hundreds of hours of shoot-and-loot mayhem at an extraordinary value.”
www.borderlands2.com/gameoftheyear
About 2% of users remove it
Dishonored  by Bethesda Softworks
Dishonored is a stealth action adventure video game developed by Arkane Studios and published by Bethesda Softworks. Set in the fictional, plague-ridden industrial city of Dunwall, Dishonored follows Corvo Attano, the Empress's legendary bodyguard.
www.dishonored.com
3% remove it
League of Legends  by Riot Games
League of Legends (LoL) is a multiplayer online battle arena video game developed and published by Riot Games for Microsoft Windows. Players are formed into 2 even teams of Champions, 3v3 or 5v5. League of Legends is a session-based game.
www.RiotGames.com
12% remove it
Spec Ops The Line  by R.G. Mechanics
The version is a repack of the game and not distributed by the original publisher which might not be a legal or legitimate copy, please refer to the game copyright.
tapochek.net
10% remove it
The Amazing Spider-Man  by Activision
The Amazing Spider-Man is a PC video game published by Activision.
www.activision.com
7% remove it
Worms Revolution  by Team17 Software
Publisher's description - “Worms™ Revolution is the latest game in the classic turn-based strategy series to come to the PC, featuring exciting new features and beautiful 3D graphics whilst retaining the classic 2D gameplay that fans love.”
About 4% of users remove it
 
Powered by Should I Remove It?

The file buddha.dll has been seen being distributed by the following URL.

http://dc596.4shared.com/download/.../buddha.dll?tsid=20130319-141149-a94b7d4d&dsid=3ohbqa.5a4a06d37855ca09c8cc68e48f612e07

Scan buddha.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.