home

cde2414e09e24869ad9389a44c9d3712.dll

MD5:
8e860f0efa24dce4dc9182d9db57b412

SHA-1:
abe765255467aed4584c475690dd1f8c0bcb3175

SHA-256:
a9409bc1589a47f8fe1f8a0d759b13129ac52a115307a333e8914bec09b3559f

Scanner detections:
4 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
5/4/2024 10:55:31 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Crypt.XPACK.Gen
7.11.30.172

Bkav FE
W32.HfsAutoA
1.3.0.4959

Comodo Security
Heur.Packed.Unknown
19353

Quick Heal
(Suspicious) - DNAScan
8.14.14.00

File size:
81 KB (82,944 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\temp\cde2414e09e24869ad9389a44c9d3712.dll

File PE Metadata
Compilation timestamp:
3/31/2017 10:07:37 AM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

CTPH (ssdeep):
1536:aVSBN5h2b3uqI65/Hwdapj3c1QizrEL4bdLxtX04gyGWqa:KSVYb33I6lHwdapjM1QicL4ZLb046ra

Entry address:
0x14000

Entry point:
E9, 37, 05, 00, 00, 0A, 93, B8, 8F, 0F, B1, 96, 8C, E8, 80, 2E, AA, D4, 6E, B6, AC, 05, 23, 08, 5F, 74, 32, ED, 5E, 2E, 7B, 35, 96, 2E, 3F, 98, 6A, 57, 81, 3C, 83, 3C, 61, 0B, C4, 5D, 70, 02, 33, ED, 78, 02, 54, 5C, 55, 5D, 33, C9, 33, C0, 72, 02, 51, 59, 76, 02, 56, 5E, BE, 52, 17, 85, 4E, 85, C9, 7E, 02, 52, 5A, 70, 05, 05, 43, EA, C6, 49, 72, 06, 81, C5, 16, FC, A0, 67, 71, 02, 53, 5B, BF, E3, 3C, 0B, 4C, 7A, 02, 56, 5E, 54, 5C, 78, 05, BB, 8C, 7E, 74, 55, 81, C3, 07, EE, 0C, 2A, 81, C2, 08, 1F, 4D, 0C...
 
[+]

Entropy:
7.1669

Packer / compiler:
Xtreme-Protector v1.05

Code size:
2 GB (2,115,879,161 bytes)

Scan cde2414e09e24869ad9389a44c9d3712.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.