home

eorezoimg_22.dll

Bibliothèque de liaison dynamique EoRezoImg

Eorezo

This is part of the Eorezo downloader which may bundle additional offers on the PC, mostly adware and other potentially unwanted software. The module eorezoimg_22.dll by Eorezo has been detected as adware by 4 anti-malware scanners.
Publisher:
Eorezo  (signed and verified)

Product:
Bibliothèque de liaison dynamique EoRezoImg

Description:
EoRezoImg DLL

Version:
1, 0, 0, 1

MD5:
b8b22f3accdab4a1d553d1df6a14d12e

SHA-1:
94e4e340287e03c36b2467a5d2d5909fa4f775fe

SHA-256:
f353519f385b3cc904e683c2ffb17c2a728e476cb8cceab29ea094b8d3249930

Scanner detections:
4 / 68

Status:
Adware

Analysis date:
4/24/2024 3:40:43 AM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Eorezo-N [PUP]
2014.9-141008

Reason Heuristics
PUP.Eorezo.M
14.10.8.5

Rising Antivirus
PE:Trojan.Win32.Generic.1527E0D1!354934993
23.00.65.141006

VIPRE Antivirus
Adware.Eorezo.a
33622

File size:
173.8 KB (178,000 bytes)

Product version:
1, 0, 0, 1

Copyright:
Copyright (C) 2005

Original file name:
EoRezoImg.DLL

File type:
Dynamic link library (Win32 DLL)

Language:
French (France)

Common path:
C:\Program Files\eorezo\eorezoimg_22.dll

Digital Signature
Signed by:
Eorezo

Authority:
VeriSign, Inc.

Valid from:
10/14/2008 2:00:00 AM

Valid to:
10/15/2009 1:59:59 AM

Subject:
CN=Eorezo, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Eorezo, L=Paris, S=Ile de France, C=FR

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
5158654305438A3E707630D3BFDE7C69

File PE Metadata
Compilation timestamp:
11/21/2007 11:14:14 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
3072:dsWxbbSPYl3hvgpAyAlmameDow+U4tTznouR5F:KUwq3hYolNDf54xbrR5F

Entry address:
0x1879B

Entry point:
55, 8B, EC, 53, 8B, 5D, 08, 56, 8B, 75, 0C, 57, 8B, 7D, 10, 85, F6, 75, 09, 83, 3D, 38, 6B, 02, 10, 00, EB, 26, 83, FE, 01, 74, 05, 83, FE, 02, 75, 22, A1, C8, 69, 02, 10, 85, C0, 74, 09, 57, 56, 53, FF, D0, 85, C0, 74, 0C, 57, 56, 53, E8, 15, FF, FF, FF, 85, C0, 75, 04, 33, C0, EB, 4E, 57, 56, 53, E8, 35, 90, FF, FF, 83, FE, 01, 89, 45, 0C, 75, 0C, 85, C0, 75, 37, 57, 50, 53, E8, F1, FE, FF, FF, 85, F6, 74, 05, 83, FE, 03, 75, 26, 57, 56, 53, E8, E0, FE, FF, FF, 85, C0, 75, 03, 21, 45, 0C, 83, 7D, 0C, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++ 6.0

Code size:
104 KB (106,496 bytes)

Remove eorezoimg_22.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.