» hfnapi.dll
Overview
Analysis
File Details

hfnapi.dll

The module hfnapi.dll has been detected as a potentially unwanted program by 24 anti-malware scanners.

File name:

hfnapi.dll

MD5:

986292b7fd65f6dec7e0f49c9f2c97fa

SHA-1:

dbb3fcfc91da4dfb80d494bde78a4705972f6be9

SHA-256:

4e68130142c90be0c4b0c8ae8cfb06d721ef56ff7a49472a53773c5e367a3273

Scanner detections:

24 / 68

Status:

Potentially unwanted

Analysis date:

4/24/2024 9:14:13 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Adware.Netfilter.2

6128384

AhnLab V3 Security

Trojan/Win32.Downloader

2014.12.15

Avira AntiVirus

ADWARE/Adware.Gen7

7.11.195.126

avast!

Win32:Adware-gen [Adw]

141214-1

Baidu Antivirus

Adware.Win32.NetFilter

4.0.3.141214

Bitdefender

Gen:Variant.Adware.Netfilter.2

1.0.20.1740

Dr.Web

Trojan.Adfltnet.52

9.0.1.05190

Emsisoft Anti-Malware

Gen:Variant.Adware.Netfilter

9.0.0.4668

Fortinet FortiGate

W32/Agent.AAPPR!tr.dldr

12/19/2014

F-Secure

Gen:Variant.Adware.Netfilter.2

5.13.68

G Data

Gen:Variant.Adware.Netfilter

14.12.24

K7 AntiVirus

Trojan

13.187.14319

Kaspersky

UDS:DangerousObject.Multi.Generic

14.0.0.2796

Malwarebytes

PUP.Optional.NetFilter

v2014.12.14.06

McAfee

Artemis!986292B7FD65

5600.6916

MicroWorld eScan

Gen:Variant.Adware.Netfilter.2

15.0.0.1044

NANO AntiVirus

Trojan.Win32.Agent.djpgnz

0.28.6.63850

Norman

Gen:Variant.Adware.Netfilter.2

04.12.2014 14:30:06

Panda Antivirus

Trj/Genetic.gen

14.12.14.06

Qihoo 360 Security

Win32/Trojan.Multi.daf

1.0.0.1015

Reason Heuristics

Threat.Win.Reputation.IMP

14.12.19.0

Sophos

Mal/Generic-S

4.98

Trend Micro House Call

TROJ_GEN.R08NH09LB14

7.2.348

ViRobot

Trojan.Win32.A.Downloader.108544.GU

2011.4.7.4223

File size:

106 KB (108,544 bytes)

File type:

Dynamic link library (Win32 DLL)

Common path:

C:\Windows\System32\hfnapi.dll

File PE Metadata

Compilation timestamp:

12/11/2014 11:39:23 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

3072:YVG/ryKUz6Q931Ga3kpJ99Lr+U6ZZ8i3zVR4NS:OKUz6Q931bUn99Lri3zj9

Entry address:

0x7F16

Entry point:

8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, E7, 48, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 83, EC, 28, 33, C0, 89, 45, F8, 89, 45, FC, 39, 05, 30, AB, 01, 10, 74, 0E, FF, 35, 3C, C9, 01, 10, FF, 15, A0, 40, 01, 10, EB, 05, B8, A8, C8, 00, 10, 8B, 4D, 14, BA, A6, 00, 00, 00, 56, 3B, CA, 0F, 8F, A2, 01, 00, 00, 0F, 84, 89, 01, 00, 00, 83, F9, 19, 0F, 8F, 18, 01, 00, 00, 0F, 84, 06, 01, 00, 00, 6A, 02, 5A, 2B, CA, 0F, 84, EC, 00, 00, 00, 49... 
[+]

Code size:

74 KB (75,776 bytes)

Remove hfnapi.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.