home

jrslihqh.dll

The library jrslihqh.dll has been detected as malware by 5 anti-virus scanners.
MD5:
b382cd8b5954a04b8fa120103f098cb4

SHA-1:
9148cbbb306bdcf0d011bd23f24764742530ae89

SHA-256:
e34679b58de9e31fc25cbb1b48bf52b82ea740f91b00e0a1fc577d683cc98a94

Scanner detections:
5 / 68

Status:
Malware

Analysis date:
4/25/2024 11:55:08 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Packed.Themida suspicious application
7.0.302.0

F-Secure
Variant.Symmi.38296
5.15.21

McAfee
Trojan.Miuref-FAD!B382CD8B5954
18.0.204.0

Norman
Gen:Variant.Symmi.38296
03.12.2014 13:20:04

Sophos
Virus 'Mal/EncPk-DW'
5.23

File size:
808.5 KB (827,904 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\odics\jrslihqh.dll

File PE Metadata
Compilation timestamp:
5/4/2015 11:24:00 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:ApdDBYtgE6n2n3n8+ZhCHBbjtxGzsi/qRs8PNBMlCnhS0:Apa1u23n87H5jtMsi/sslQS0

Entry address:
0x1E3000

Entry point:
56, 50, 53, E8, 01, 00, 00, 00, CC, 58, 89, C3, 40, 2D, 00, 80, 0C, 00, 2D, 8C, AC, 0B, 10, 05, 83, AC, 0B, 10, 80, 3B, CC, 75, 19, C6, 03, 00, BB, 00, 10, 00, 00, 68, DB, 63, 93, 58, 68, AE, 4C, E4, 0C, 53, 50, E8, 0A, 00, 00, 00, 83, C0, 00, 89, 44, 24, 08, 5B, 58, C3, 55, 89, E5, 50, 53, 51, 56, 8B, 75, 08, 8B, 4D, 0C, C1, E9, 02, 8B, 45, 10, 8B, 5D, 14, 85, C9, 74, 0A, 31, 06, 01, 1E, 83, C6, 04, 49, EB, F2, 5E, 59, 5B, 58, C9, C2, 10, 00, 60, D1, 64, 05, F6, 5F, 69, 18, C5, 6A, 16, F1, 82, A4, 13, 34...
 
[+]

Code size:
5.5 KB (5,632 bytes)

Remove jrslihqh.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.