home

klastrpwdmon.dll

KLAstrPw Dynamic Link Library

Serhiy Horobets

Publisher:
KRyLack Software  (signed by Serhiy Horobets)

Product:
KLAstrPw Dynamic Link Library

Version:
2.92.83.0

MD5:
6d847d477f32c91a41a5729e78c1f0d0

SHA-1:
be2a7c050557f8c2efe400bf90ed219683106a9f

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/19/2024 6:52:50 PM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/PSWTool.IEPasswordsRevealer (variant)
9.7149

File size:
84.3 KB (86,312 bytes)

Product version:
2.92.83.0

Copyright:
Copyright © 2006 - 2011 Serhiy Horobets. All rights reserved.

Original file name:
KLAstrPw.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Documents and Settings\{user}\Application data\asterisk password decryptor\install\2.92.83\3fc2db6\klastrpwdmon.dll

Digital Signature
Signed by:
Serhiy Horobets

Authority:
The USERTRUST Network

Valid from:
1/18/2010 1:00:00 AM

Valid to:
1/19/2012 12:59:59 AM

Subject:
CN=Serhiy Horobets, O=Serhiy Horobets, STREET=Sechenova st. 7a - 38, L=Kiev, S=Kiev, PostalCode=03127, C=UA

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
30E688418A082C86081E5701459AFF52

File PE Metadata
Compilation timestamp:
7/24/2011 9:01:07 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
1536:zd4+krFcjF8auGKNlgMwbjrg1snnIu+nZ97Gk2qTROVGgn:zd4RWRWHgpfr/bSgqTROV1

Entry address:
0x2F1E

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, F3, 36, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, B8, 66, 71, 00, 10, A3, 70, 32, 01, 10, C7, 05, 74, 32, 01, 10, 5C, 68, 00, 10, C7, 05, 78, 32, 01, 10, 10, 68, 00, 10, C7, 05, 7C, 32, 01, 10, 49, 68, 00, 10, C7, 05, 80, 32, 01, 10, B2, 67, 00, 10, A3, 84, 32, 01, 10, C7, 05, 88, 32, 01, 10, DE, 70, 00, 10, C7, 05, 8C, 32, 01, 10, CE, 67, 00, 10, C7, 05, 90, 32, 01, 10, 30, 67, 00, 10, C7, 05, 94, 32, 01, 10, BC, 66...
 
[+]

Entropy:
6.3656

Code size:
52.5 KB (53,760 bytes)

Scan klastrpwdmon.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.