home

esearch.dll

MD5:
eb724d5956be46dd56991dc1e41b77de

SHA-1:
55d1eab227025fe175976f5f49096455d047baf4

SHA-256:
ea84d80c7a59e39544a6ef4cbe4541c21448064e6ebc3c433705a1531db35326

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/31/2024 10:33:06 AM UTC  (today)

File size:
5 KB (5,101 bytes)

File type:
Dynamic link library (Win64 DLL)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\inetcache\ie\{random}\esearch.dll

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
96:Pyt7wmpYAbbpUFTu9+dQns04XwpWm7yOGF7/TPSyAnYPKJo1YhzACJopnenDi3Dn:PWVLbbpUu/nN4Dm7yOGF7L/nPz1YxJoZ

Entry point:
78, 9C, A5, 5C, 5D, 73, E3, B6, 92, 7D, CE, 56, ED, 7F, 60, D5, 4D, E5, 6D, 72, 6D, 6B, 9C, 3B, 77, DF, 28, 02, 92, 60, 83, 1F, 03, 90, A2, 9C, A9, D4, D6, 58, 94, 25, 4D, 24, 5B, 11, 65, C9, CE, AF, DF, C6, 07, 3F, 25, 36, 7D, 6B, F3, 34, D1, E8, 1C, 34, 1A, 8D, C6, E9, 06, 34, 83, AB, CF, FF, FD, 5F, 3F, 3F, FE, 39, CF, B6, FF, FB, 9A, FF, 34, 0C, 1E, 7C, CA, 79, 18, 10, 3A, F5, 1C, E7, 9B, F3, F3, F0, DE, 23, BE, F3, C7, 4F, 89, 74, 18, 7C, 3A, A3, F2, A7, 9B, FF, B9, B2, FF, 15, D0, C3, 19, 36, AE, C0...
 
[+]

Entropy:
7.9542  (probably packed)

The file esearch.dll has been seen being distributed by the following URL.

http://app.incrediblecharts.com/userscripts/esearch/esearch.dll?searchstr=DEV US&searchonlycodes=0&searchtextoption=0&random=264901776&userid=576128&clientid_info=3232&csession=811C3010BBDCBB18E0431241FC6596FB&build=7.0.0.14&datamodulebuild=1.0.0.30&screenerisapi=/userscripts/.../fm_screening7.dll

Scan esearch.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.