home

diskfileguriwebcontrol_1002_x64.dll

FileControl

Iconcube. Inc.

The module diskfileguriwebcontrol_1002_x64.dll, “DiskFileguriWebControl” by Iconcube has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
아이콘큐브(주)  (signed by Iconcube. Inc.)

Product:
FileControl

Description:
DiskFileguriWebControl

Version:
1.0.0.2

MD5:
38b8a3bdf61dbc612a88903980ef0a8a

SHA-1:
cc6027188a097c1cc9b38d1752ac98c3ccb6f56b

SHA-256:
bdeee0ef2e3c64594dc4da34f21e0aadb8ae4e509ca3b7c8faba0843b12fb34f

Scanner detections:
1 / 68

Status:
Potentially unwanted

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
4/30/2024 1:26:45 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.1.26.17

File size:
989.2 KB (1,012,944 bytes)

Product version:
1.0.0.2

Copyright:
아이콘큐브(주) All rights reserved.

Original file name:
DiskFileguriWebControl.dll

File type:
Dynamic link library (Win64 DLL)

Common path:
C:\windows\downloaded Program Files\diskfileguriwebcontrol_1002_x64.dll

Digital Signature
Signed by:
Iconcube. Inc.

Authority:
Symantec Corporation

Valid from:
9/20/2016 9:00:00 AM

Valid to:
10/21/2018 8:59:59 AM

Subject:
CN=Iconcube. Inc., OU=IT Team, O=Iconcube. Inc., L=Geumcheon-gu, S=SEOUL, C=KR

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
767B944D6C8A18776C2BBB51B0EF9FC1

Registration
CLSID:
{354CBEAA-8374-4d59-B524-4D88AA79CA4D}

ProgID:
DiskFileguriWebControl.WebBBS.1

COM registered:
Yes

File PE Metadata
Compilation timestamp:
9/13/2016 10:39:35 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0x87E9C

Entry point:
48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 20, 49, 8B, F8, 8B, DA, 48, 8B, F1, 83, FA, 01, 75, 05, E8, 7B, 9D, 00, 00, 4C, 8B, C7, 8B, D3, 48, 8B, CE, 48, 8B, 5C, 24, 30, 48, 8B, 74, 24, 38, 48, 83, C4, 20, 5F, E9, AB, FE, FF, FF, CC, CC, CC, 40, 53, 48, 83, EC, 40, 83, 3D, 8F, 15, 06, 00, 00, 48, 63, D9, 75, 10, 48, 8B, 05, 9B, AC, 05, 00, 0F, B7, 04, 58, 83, E0, 04, EB, 56, 48, 8D, 4C, 24, 20, 33, D2, E8, AA, BF, FF, FF, 48, 8B, 44, 24, 20, 83, B8, 0C, 01, 00, 00, 01, 7E, 16, 4C, 8D, 44, 24...
 
[+]

Entropy:
5.9762

Code size:
669 KB (685,056 bytes)

ActiveX Install
Name:
{354CBEAA-8374-4D59-B524-4D88AA79CA4D}


Remove diskfileguriwebcontrol_1002_x64.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.