home

edis64.dll

Desk 365

337 Technology Limited

The module edis64.dll, “Desk 365 explorer helper library” by 337 Technology Limited has been detected as adware by 7 anti-malware scanners.
Publisher:
337 Technology Limited.  (signed by 337 Technology Limited)

Product:
Desk 365

Description:
Desk 365 explorer helper library

Version:
1.12.16.7354

MD5:
9efa54d4a9956c799b30c65321845732

SHA-1:
c96e65a3e41ad90246315b254a638c6151df479c

SHA-256:
bdb7a071e93e4f0f8e0b156a54c5f86f737cf45ac3db0ed923a5a4c3c1160a19

Scanner detections:
7 / 68

Status:
Adware

Analysis date:
4/23/2024 9:11:52 AM UTC  (today)

Scan engine
Detection
Engine version

Comodo Security
ApplicUnwnt
17255

Dr.Web
Adware.Mutabaha.29
9.0.1.057

IKARUS anti.virus
not-a-virus:AdWare.Win32.D365
t3scan.2.2.29

Kaspersky
not-a-virus:AdWare.Win32.D365
14.0.0.4325

Reason Heuristics
PUP.337TechnologyLimited.G
14.8.7.20

Trend Micro House Call
TROJ_GEN.F47V0904
7.2.42

Vba32 AntiVirus
AdWare.D365
3.12.24.3

File size:
181.6 KB (185,936 bytes)

Product version:
1.12.16.7354

Copyright:
Copyright (C) 2012

Original file name:
edis.dll

File type:
Dynamic link library (Win64 DLL)

Language:
English (United States)

Common path:
C:\Program Files\desk 365\edis64.dll

Digital Signature
Signed by:
337 Technology Limited

Authority:
GlobalSign nv-sa

Valid from:
6/25/2012 2:04:18 AM

Valid to:
6/26/2015 2:04:18 AM

Subject:
CN=337 Technology Limited, O=337 Technology Limited, L=香港, S=香港, C=HK

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121A511A565DC1022CCD7BA41E2E418FE65

File PE Metadata
Compilation timestamp:
5/28/2013 6:27:55 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
3072:eJIigmztTL5P6eRNw3fGuPE1lNoYPDDnqMe2GXjvg+jBDNgnfsMYAIsd4sYWPYy:eJIR4tTLp6e8uuP+BrDnre2GXjvg+jlg

Entry address:
0x338C

Entry point:
48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 20, 49, 8B, F8, 8B, DA, 48, 8B, F1, 83, FA, 01, 75, 05, E8, 8B, 1B, 00, 00, 4C, 8B, C7, 8B, D3, 48, 8B, CE, 48, 8B, 5C, 24, 30, 48, 8B, 74, 24, 38, 48, 83, C4, 20, 5F, E9, A7, FE, FF, FF, CC, CC, CC, 48, 89, 5C, 24, 10, 48, 89, 7C, 24, 18, 55, 48, 8B, EC, 48, 83, EC, 60, 48, 8B, FA, 48, 8B, D9, 48, 8D, 4D, C0, 48, 8D, 15, C1, 6F, 00, 00, 41, B8, 40, 00, 00, 00, E8, 86, F7, FF, FF, 48, 8D, 55, 10, 48, 8B, CF, 48, 89, 5D, E8, 48, 89, 7D, F0, E8, F8, 48...
 
[+]

Code size:
36 KB (36,864 bytes)

Remove edis64.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.