» difrgin.dll
Overview
Analysis
File Details

difrgin.dll

The library difrgin.dll has been detected as malware by 37 anti-virus scanners.

File name:

difrgin.dll

MD5:

a49c1f16b451d125c5bfef22daa4b263

SHA-1:

71b8d8a5621d5becab07735cb9d4359b830d7cbf

SHA-256:

136f5172ae2e8d67ecba0143110c51eefdce7d3c87bd32721978b7b6736089fa

Scanner detections:

37 / 68

Status:

Malware

Analysis date:

5/8/2024 10:58:03 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.AgentWDCR.BYX

801

Agnitum Outpost

Trojan.PR.Agent

7.1.1

AhnLab V3 Security

Trojan/Win32.Proxy

2014.11.14

Avira AntiVirus

TR/Downloader.A.4067

7.11.185.112

avast!

Win32:Malware-gen

2014.9-141126

AVG

Proxy

2015.0.3279

Baidu Antivirus

Trojan.Win32.Yakes

4.0.3.141126

Bitdefender

Trojan.AgentWDCR.BYX

1.0.20.1650

Comodo Security

UnclassifiedMalware

20075

Dr.Web

Trojan.Siggen6.24326

9.0.1.0330

Emsisoft Anti-Malware

Trojan.AgentWDCR.BYX

8.14.11.26.06

ESET NOD32

Win32/TrojanProxy.Agent.NWW

8.10722

Fortinet FortiGate

W32/Yakes.GADW!tr

11/26/2014

F-Prot

W32/Backdoor2.HVNS

v6.4.7.1.166

F-Secure

Trojan.AgentWDCR.BYX

11.2014-26-11_4

G Data

Trojan.AgentWDCR.BYX

14.11.24

IKARUS anti.virus

Trojan.Win32.Yakes

t3scan.1.8.3.0

K7 AntiVirus

Proxy-Program

13.185.14007

Kaspersky

Trojan.Win32.Yakes

14.0.0.2889

Malwarebytes

Trojan.Agent.ED

v2014.11.26.06

McAfee

RDN/Generic Proxy!i

5600.6935

Microsoft Security Essentials

TrojanProxy:Win32/Bunitu.F

1.11104

MicroWorld eScan

Trojan.AgentWDCR.BYX

15.0.0.990

NANO AntiVirus

Trojan.Win32.Yakes.dfecor

0.28.6.63362

Norman

Suspicious_Gen4.GZVRH

11.20141126

nProtect

Trojan.AgentWDCR.BYX

14.11.13.01

Panda Antivirus

Trj/WLT.A

14.11.26.06

Qihoo 360 Security

Win32/Trojan.27c

1.0.0.1015

Quick Heal

Trojan.Yakes.rw5

11.14.14.00

Rising Antivirus

PE:Trojan.Win32.Generic.1746D3D3!390517715

23.00.65.141124

Sophos

Mal/Generic-L

4.98

SUPERAntiSpyware

Trojan.Agent/Gen-Troprox

10214

Total Defense

Win32/Tnega.AWAC

37.0.11278

Trend Micro House Call

TROJ_SPNR.11IN14

7.2.330

Trend Micro

TROJ_SPNR.11IN14

10.465.26

VIPRE Antivirus

Trojan.Win32.Generic

34778

Zillya! Antivirus

Trojan.Yakes.Win32.23787

2.0.0.1982

File size:

23 KB (23,552 bytes)

File type:

Dynamic link library (Win32 DLL)

Common path:

C:\users\{user}\appdata\local\difrgin.dll

File PE Metadata

Compilation timestamp:

9/15/2014 1:31:42 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

5.12

CTPH (ssdeep):

192:2rmW5ql/I/XYSZTY3qSvqfvGXJEPOULE0UFTWA25YaFO6Ap5E:2rdql/I/f0DvKv0oOd04WjzA

Entry address:

0x3D3B

Entry point:

55, 8B, EC, 83, C4, EC, FF, 75, 0C, 59, B8, 3F, 01, 00, 00, 23, D1, 89, 15, 52, 60, 00, 10, 2D, 3E, 01, 00, 00, C9, C2, 0C, 00, 0D, 55, 8B, EC, AD, 60, 8D, 34, 11, 83, EE, 01, 83, EE, 01, 68, 84, 3D, 00, 10, 83, 04, 24, 01, C3, 55, 60, 8B, EC, 64, 8B, 15, 30, 00, 00, 00, 8B, 52, 0C, 8B, 52, 14, 8B, 72, 28, FF, 75, 28, 59, 8B, F6, BF, 00, 00, 00, 00, 0F, B6, 06, 46, 3C, 61, 7C, 05, 2C, 10, 48, 2C, 0F, C1, CF, 0D, 03, F8, 8B, FF, E2, EA, 3B, 7D, 24, 8B, 5A, 10, 8B, 12, 75, AE, 89, 5C, 24, 1C, 33, C0, 61, 5A... 
[+]

Developed / compiled with:

Microsoft Visual C++

Code size:

12.5 KB (12,800 bytes)

Remove difrgin.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.