home

imp2.dll

ImP2DLL

The library imp2.dll has been detected as malware by 9 anti-virus scanners.
Product:
ImP2DLL

Description:
ImP2DLL

Version:
1, 2005, 12, 1

MD5:
8bc0740f9a9eefac6cb91180efbc7560

SHA-1:
b29af528677ed24d46b10008a7a6baa6142348b1

SHA-256:
a61d7e3905079f1887e6b02c8709ce58882449761f6fad7a3b82547e112ebf34

Scanner detections:
9 / 68

Status:
Malware

Analysis date:
4/26/2024 6:14:09 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Spy.Gen
7.11.134.158

Baidu Antivirus
Trojan.Win32.Generic
4.0.3.14424

Comodo Security
UnclassifiedMalware
17879

McAfee
Artemis!8BC0740F9A9E
5600.7151

Norman
Suspicious_Gen4.EBKZC
11.20140424

Rising Antivirus
PE:Trojan.Win32.Generic.123BE406!305914886
23.00.65.14422

Sophos
Mal/Generic-S
4.98

Trend Micro House Call
TROJ_SPNR.24CC12
7.2.114

Trend Micro
TROJ_SPNR.24CC12
10.465.24

File size:
132 KB (135,168 bytes)

Product version:
1, 0, 0, 1

Copyright:
Copyright ⓒ 2005

Original file name:
ImP2DLL.dll

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Windows\System32\imp2.dll

File PE Metadata
Compilation timestamp:
2/20/2006 9:52:36 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
3072:nIEOxNbCyEPluxIFqvovKxIFqvovKxIFqvovKxIv1fXMuyOv5LlYnPtj:np8NLGQxIFqvovKxIFqvovKxIFqvovKX

Entry address:
0xCDDE

Entry point:
55, 8B, EC, 53, 8B, 5D, 08, 56, 8B, 75, 0C, 57, 8B, 7D, 10, 85, F6, 75, 09, 83, 3D, D0, E7, 01, 10, 00, EB, 26, 83, FE, 01, 74, 05, 83, FE, 02, 75, 22, A1, 0C, FF, 01, 10, 85, C0, 74, 09, 57, 56, 53, FF, D0, 85, C0, 74, 0C, 57, 56, 53, E8, E7, FE, FF, FF, 85, C0, 75, 04, 33, C0, EB, 4E, 57, 56, 53, E8, D2, B5, FF, FF, 83, FE, 01, 89, 45, 0C, 75, 0C, 85, C0, 75, 37, 57, 50, 53, E8, C3, FE, FF, FF, 85, F6, 74, 05, 83, FE, 03, 75, 26, 57, 56, 53, E8, B2, FE, FF, FF, 85, C0, 75, 03, 21, 45, 0C, 83, 7D, 0C, 00...
 
[+]

Entropy:
5.8736

Developed / compiled with:
Microsoft Visual C++

Code size:
84 KB (86,016 bytes)

ActiveX Install
Name:
{18D63578-EA2F-4A59-A49A-7F62E6B3DF3E}


Remove imp2.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.