home

cgauth.dll

cgauth

Chaos Group Ltd

The library cgauth.dll, “Chaos Group authorization server” has been detected as malware by 19 anti-virus scanners.
Publisher:
Chaos Group Ltd

Product:
cgauth

Description:
Chaos Group authorization server

Version:
1, 0, 0, 1

MD5:
78652c433a0c7ea3aa82d35b6c4c423f

SHA-1:
9a66a5031a34609e31640c0712670b4ecc9ba7b4

SHA-256:
48b38d08e542871e9106257ed3da20509c83ee85ad796a80c0b8db0128dfa22b

Scanner detections:
19 / 68

Status:
Malware

Analysis date:
4/19/2024 3:05:06 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.Generic.11807897
776

Agnitum Outpost
Trojan.VMProtect
7.1.1

avast!
Win64:Malware-gen
2014.9-141221

AVG
Win32/Blacked
2015.0.3254

Bitdefender
Trojan.Generic.11807897
1.0.20.1775

Comodo Security
UnclassifiedMalware
20432

Emsisoft Anti-Malware
Trojan.Generic.11807897
8.14.12.21.09

ESET NOD32
Win32/Packed.VMProtect.ABD (variant)
8.10910

Fortinet FortiGate
PossibleThreat
12/21/2014

G Data
Trojan.Generic.11807897
14.12.24

IKARUS anti.virus
Trojan.Win32.VMProtect
t3scan.1.8.5.0

K7 AntiVirus
Trojan
13.188.14395

McAfee
Artemis!78652C433A0C
5600.6910

MicroWorld eScan
Trojan.Generic.11807897
15.0.0.1065

Norman
Troj_Generic.WXFZO
11.20141221

nProtect
Trojan.Generic.11807897
14.12.19.01

Trend Micro House Call
TROJ_GEN.R002C0EKM14
7.2.355

Trend Micro
TROJ_GEN.R002C0EKM14
10.465.21

VIPRE Antivirus
Trojan.Win32.Generic
35948

File size:
287.5 KB (294,400 bytes)

Product version:
1, 0, 0, 1

Copyright:
Copyright © 2005 by Chaos Group Ltd

Original file name:
cgauth.dll

File type:
Dynamic link library (Win64 DLL)

Language:
English (United States)

Common path:
C:\Program Files\autodesk\maya2015\vray\bin\cgauth.dll

File PE Metadata
Compilation timestamp:
7/7/2014 4:12:58 PM

OS version:
6.0

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
3072:HTa0hidnlmeqho/B13fFvVUfG1jcYB+56qNw6wCUyQlNXe9gAYI5UlbPuO3Fnfjq:HTa0hiJlRttb3G9gvoUwO3F7RLo8

Entry address:
0x31038

Entry point:
48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 20, 49, 8B, F8, 8B, DA, 48, 8B, F1, 83, FA, 01, 75, 05, E8, C7, 02, 00, 00, 4C, 8B, C7, 8B, D3, 48, 8B, CE, 48, 8B, 5C, 24, 30, 48, 8B, 74, 24, 38, 48, 83, C4, 20, 5F, E9, 03, 00, 00, 00, CC, CC, CC, 48, 8B, C4, 48, 89, 58, 08, 48, 89, 70, 10, 48, 89, 78, 18, 41, 56, 48, 83, EC, 30, 49, 8B, F0, 8B, FA, 4C, 8B, F1, BB, 01, 00, 00, 00, 89, 58, E8, 89, 15, 6D, FB, 00, 00, 85, D2, 75, 12, 39, 15, F3, 44, 01, 00, 75, 0A, 33, DB, 89, 58, E8, E9, CB, 00, 00...
 
[+]

Entropy:
6.2622

Code size:
207.5 KB (212,480 bytes)

Remove cgauth.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.