home

ET.dll

MAPI

CSoft Development

The library ET.dll has been detected as malware by 15 anti-virus scanners.
Publisher:
CSoft Development

Product:
MAPI

Description:
ET.dll module

Version:
9.0.0.1064

MD5:
8abbfec2fe5a155735e66c92ba1dafea

SHA-1:
e5ddf8dd13868eb570352fe84e0b9326759914e1

SHA-256:
2f5d07864227f2a53804483b56a78807234317b4e088dab49adc3944bf75fd66

Scanner detections:
15 / 68

Status:
Malware

Analysis date:
4/27/2024 1:18:05 AM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
Packed/NSPack
7.1.1

avast!
Win32:Malware-gen
2014.9-150125

AVG
BackDoor.Hupigon5
2016.0.3219

Comodo Security
TrojWare.Win32.Trojan.NSPM.~gen
20611

Fortinet FortiGate
Malware_fam.NB
1/25/2015

F-Prot
W32/Heuristic-210
v6.4.7.1.166

IKARUS anti.virus
Backdoor.Win32.Hupigon
t3scan.1.8.5.0

K7 AntiVirus
Trojan
13.1814541

McAfee
Artemis!8ABBFEC2FE5A
5600.6875

Norman
Suspicious_N.gen
11.20150125

Panda Antivirus
Generic Malware
15.01.25.02

Sophos
Mal/Packer
4.98

Trend Micro House Call
TROJ_SPNR.3AKH13
7.2.25

Trend Micro
TROJ_SPNR.3AKH13
10.465.25

VIPRE Antivirus
Trojan.Win32.Generic
36406

File size:
247 KB (252,928 bytes)

Product version:
9.0.1064

Copyright:
(C)CSoft Development, by Omsk's affiliate, 2011

Original file name:
ET.dll

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\csoft\спдс graphics 7\mg9\et.dll

File PE Metadata
Compilation timestamp:
10/18/2011 3:25:08 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6144:Xtv7Enegt+HTv89myWmlJLkS/PzrNFztVfxfXHW8h4mOzTeLRY0xHOtvlCjY:N7Eegzlf9tVfxfXHWuRY

Entry address:
0x472A5

Entry point:
9C, 60, E8, 00, 00, 00, 00, 5D, 83, ED, 07, 8D, 8D, D7, FD, FF, FF, 80, 39, 01, 0F, 84, 42, 02, 00, 00, C6, 01, 01, 8B, C5, 2B, 85, 6B, FD, FF, FF, 89, 85, 6B, FD, FF, FF, 01, 85, 9B, FD, FF, FF, 8D, B5, DF, FD, FF, FF, 01, 06, 55, 56, 6A, 40, 68, 00, 10, 00, 00, 68, 00, 10, 00, 00, 6A, 00, FF, 95, 03, FE, FF, FF, 85, C0, 0F, 84, 69, 03, 00, 00, 89, 85, 93, FD, FF, FF, E8, 00, 00, 00, 00, 5B, B9, 67, 03, 00, 00, 03, D9, 50, 53, E8, B0, 02, 00, 00, 5E, 5D, 8B, 36, 8B, FD, 03, BD, 5B, FD, FF, FF, 8B, DF, 83...
 
[+]

Packer / compiler:
NsPacK V3.7

Remove ET.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.