home

mbaqtfed.dll

GY30S9

The library mbaqtfed.dll has been detected as malware by 1 anti-virus scanner.
Product:
GY30S9

Version:
1.75.10.30

MD5:
417ab38e3427ac4c38dd2d0d408c5130

SHA-1:
9bc5653c05079d591c074d5304cef890c6ff1fdf

SHA-256:
820ad43023a67db29f8757c6812faa57e10e9c19ddf733b67f5626374a0e4218

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
4/24/2024 2:10:08 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Trojan.Proxy
17.3.16.13

File size:
1.8 MB (1,922,668 bytes)

Product version:
1.75.10.30

Copyright:
Copyright (C) 2014

File type:
Dynamic link library (Win64 DLL)

Common path:
C:\Program Files\076ef216455e42af1ae1248c558e67d9\e12cbfbb0a69b0fefbcdb492228b2d00\mbaqtfed.dll

File PE Metadata
Compilation timestamp:
12/23/2016 12:41:30 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
12.0

Entry address:
0x134A40

Entry point:
48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 20, 49, 8B, F8, 8B, DA, 48, 8B, F1, 83, FA, 01, 75, 05, E8, 37, E2, 00, 00, 4C, 8B, C7, 8B, D3, 48, 8B, CE, 48, 8B, 5C, 24, 30, 48, 8B, 74, 24, 38, 48, 83, C4, 20, 5F, E9, 03, 00, 00, 00, CC, CC, CC, 48, 8B, C4, 48, 89, 58, 20, 4C, 89, 40, 18, 89, 50, 10, 48, 89, 48, 08, 56, 57, 41, 56, 48, 83, EC, 50, 49, 8B, F0, 8B, DA, 4C, 8B, F1, BA, 01, 00, 00, 00, 89, 50, B8, 85, DB, 75, 0F, 39, 1D, 6C, 20, 05, 00, 75, 07, 33, C0, E9, D2, 00, 00, 00, 8D, 43, FF...
 
[+]

Entropy:
6.2750

Code size:
1.5 MB (1,536,000 bytes)

Remove mbaqtfed.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.