» EventmapEnum90.dll
Overview
Analysis
File Details

EventmapEnum90.dll

EventmapEnum90

The library EventmapEnum90.dll has been detected as malware by 21 anti-virus scanners.

File name:

EventmapEnum90.dll

Product:

EventmapEnum90

Version:

20,2,1600,0

MD5:

3ca9df28d97115a50e20ec974ee3a2ce

SHA-1:

7b2da1e4064d39324f7c09a364ed3848a15286c0

SHA-256:

cdac836d36762ef300495d488c77234ae48ea7d2532354845326dac8f998f540

Scanner detections:

21 / 68

Status:

Malware

Analysis date:

4/19/2024 6:43:44 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Kazy.549212

675

Avira AntiVirus

TR/Crypt.ZPACK.Gen4

3.6.1.96

avast!

Win32:Malware-gen

2014.9-150401

AVG

Win32/Cryptor

2016.0.3153

Baidu Antivirus

Trojan.Win32.Boaxxe

4.0.3.1541

Bitdefender

Gen:Variant.Kazy.549212

1.0.20.455

Emsisoft Anti-Malware

Gen:Variant.Kazy.549212

8.15.04.01.06

ESET NOD32

Win32/Boaxxe.CQ (variant)

9.11394

Fortinet FortiGate

W32/Boaxxe.CQ!tr

4/1/2015

F-Prot

W32/S-87ce385a

v6.4.7.1.166

F-Secure

Gen:Variant.Kazy.549212

11.2015-01-04_4

G Data

Gen:Variant.Kazy.549212

15.4.25

K7 AntiVirus

Trojan

13.202.15417

McAfee

Trojan-FFYO!3CA9DF28D971

5600.6809

Microsoft Security Essentials

Trojan:Win32/Miuref!rfn

1.1.11502.0

MicroWorld eScan

Gen:Variant.Kazy.549212

16.0.0.273

Panda Antivirus

Generic Suspicious

15.04.01.06

Sophos

Mal/Boaxxe-J

4.98

Trend Micro House Call

TROJ_GEN.R028C0DCM15

7.2.91

Trend Micro

TROJ_GEN.R028C0DCM15

10.465.01

VIPRE Antivirus

Trojan.Win32.Generic

38874

File size:

59 KB (60,416 bytes)

Product version:

20,2,1600,0

Original file name:

EventmapEnum90.dll

File type:

Dynamic link library (Win32 DLL)

Language:

English (United States)

Common path:

C:\users\{user}\appdata\local\ixsoft\eventmapenum90.dll

File PE Metadata

Compilation timestamp:

3/18/2015 10:23:38 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

1536:+WCXIHGhvi8sXC2tLCJ8u1go/cPLYufZyQKaB/85:/mhvhkCqygoCLYuoQU5

Entry address:

0x2DA0

Entry point:

55, 8B, EC, 83, EC, 5C, A1, 48, 00, 01, 10, 89, 45, C0, 8B, 0D, 44, 00, 01, 10, 89, 4D, C4, 8B, 15, 48, 00, 01, 10, 89, 55, CC, 8B, 45, C4, 2B, 45, CC, 2B, 45, CC, 03, 45, C0, 89, 45, E8, 83, 7D, 0C, 01, 75, 09, 8B, 4D, 08, 89, 0D, 94, 00, 01, 10, B8, 01, 00, 00, 00, EB, 15, 8B, 55, C4, 8B, 45, C0, 8D, 8C, 50, 5C, 13, 00, 00, 8B, 55, E8, 2B, D1, 89, 55, E8, 8B, E5, 5D, C2, 0C, 00, 55, 8B, EC, 83, EC, 58, A1, 40, 00, 01, 10, 89, 45, C4, 8B, 0D, 40, 00, 01, 10, 89, 4D, C8, 83, 7D, C8, 01, 75, 0E, 8B, 55, 08... 
[+]

Developed / compiled with:

Microsoft Visual C++

Code size:

33 KB (33,792 bytes)

Remove EventmapEnum90.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.