» iwicvnukxja.dll
Overview
Analysis
File Details

iwicvnukxja.dll

Simple DirectMedia Layer

The library iwicvnukxja.dll has been detected as malware by 25 anti-virus scanners. According to AVG, this software downloads additional adware offers during setup.

File name:

iwicvnukxja.dll

Product:

Simple DirectMedia Layer

Description:

SDL_mixer

Version:

1, 2, 12, 0

MD5:

b5fb4296eb7f680f724cba01772e8415

SHA-1:

dbee0ef9bfe20c86a02d05d4d01d502b3e70085b

SHA-256:

c964540c530cdde36457124595adf1baa419cb9129762a6faf32edb8950e5248

Scanner detections:

25 / 68

Status:

Malware

Analysis date:

4/19/2024 4:51:19 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.GenericKD.2140598

651

Avira AntiVirus

TR/Tracur.A.6564

7.11.209.38

avast!

Win32:Malware-gen

2014.9-150425

AVG

Downloader.Generic14

2016.0.3129

Baidu Antivirus

Trojan.Win32.Tracur

4.0.3.15425

Bitdefender

Trojan.GenericKD.2140598

1.0.20.575

Bkav FE

HW32.Packed

1.3.0.6379

Emsisoft Anti-Malware

Trojan.GenericKD.2140598

8.15.04.25.02

ESET NOD32

Win32/TrojanDownloader.Tracur.AM

9.11151

F-Secure

Trojan.GenericKD.2140598

11.2015-25-04_7

G Data

Trojan.GenericKD.2140598

15.4.25

IKARUS anti.virus

Trojan-Downloader.Win32.Tracur

t3scan.1.8.6.0

K7 AntiVirus

Trojan-Downloader

13.194.14913

Kaspersky

UDS:DangerousObject.Multi.Generic

14.0.0.2139

Malwarebytes

Trojan.Chrome.INJ

v2015.04.25.02

McAfee

RDN/Generic Downloader.x!kn

5600.6785

Microsoft Security Essentials

Threat.Undefined

1.197.2.0

MicroWorld eScan

Trojan.GenericKD.2140598

16.0.0.345

Norman

Troj_Generic.YOEUE

11.20150425

nProtect

Trojan.GenericKD.2140598

15.02.09.01

Panda Antivirus

Trj/CI.A

15.04.25.02

Qihoo 360 Security

HEUR/QVM40.1.Malware.Gen

1.0.0.1015

Sophos

Troj/Tracur-CA

4.98

Trend Micro House Call

Suspicious_GEN.F47V0203

7.2.115

VIPRE Antivirus

Trojan.Win32.Generic

37412

File size:

266 KB (272,384 bytes)

Product version:

1, 2, 12, 0

Original file name:

SDL_mixer.dll

File type:

Dynamic link library (Win32 DLL)

Language:

English (United States)

Common path:

C:\users\{user}\appdata\local\{21a44f2d-ae11-491a-82b2-932e2cd25b05}\iwicvnukxja.dll

File PE Metadata

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows Console

Linker version:

2.65

CTPH (ssdeep):

6144:zBCNL/jrOr1LmPDnAaSo0NhiNRQqgT/eGtGk:zINL/j6k5SoEwXQ3F

Entry address:

0x39E9D

Entry point:

55, 89, E5, 8B, 45, 08, 8B, 55, 0C, 8B, 4D, 10, C6, 05, DC, A0, 03, 10, 01, A3, 90, A0, 03, 10, 89, 15, A0, A0, 03, 10, 89, 0D, B0, A0, 03, 10, E8, 3D, E7, FF, FF, B8, 67, 7A, 03, 10, E8, 9F, E9, FF, FF, C9, C2, 0C, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, FF, FF, FF, FF, 00, 00, 00, 00, FF, FF, FF, FF, 00, 00, FF, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

7.2565

Code size:

228 KB (233,472 bytes)

Remove iwicvnukxja.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.