home

MSVCR71D.DLL

Microsoft Visual Studio .NET

PC MightyMax, Inc.

While the file properties state the file is developed by 'Microsoft Corporation', this is not the case and it is designed just to look like a legitimate Microsoft system file. The module MSVCR71D.DLL, “Microsoft® C Runtime Library” by PC MightyMax has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Microsoft Corporation  (signed by PC MightyMax, Inc.)

Product:
Microsoft® Visual Studio .NET

Description:
Microsoft® C Runtime Library

Version:
7.10.3077.0

MD5:
f1b161e3eabbf4ddd41bb6111ba3e510

SHA-1:
152e64ab2ee52339faa72c6463492eb71de1ab94

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/20/2024 3:23:52 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Optional.PCMighty
16.12.8.22

File size:
200.9 KB (205,760 bytes)

Product version:
7.10.3077.0

Copyright:
© Microsoft Corporation. All rights reserved.

Original file name:
MSVCR71D.DLL

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Windows\System32\msvcr71d.dll

Digital Signature
Signed by:
PC MightyMax, Inc.

Authority:
VeriSign, Inc.

Valid from:
10/20/2011 8:00:00 PM

Valid to:
11/15/2012 6:59:59 PM

Subject:
CN="PC MightyMax, Inc.", OU=Comsumer Software, OU=Digital ID Class 3 - Microsoft Software Validation v2, O="PC MightyMax, Inc.", L=Valrico, S=Florida, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
41AF204CCBD007EAA1E2228AB27FB420

File PE Metadata
Compilation timestamp:
3/18/2003 11:03:50 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
6144:K7CCOoJwArPVxx1rfYEw7HduA6x/LzSLpOFBE3MWiF7NYM3YgxMy:oFOoJ5rV5rfByu7x/Lgiv97P

Entry address:
0x8B7A0

Entry point:
80, 7C, 24, 08, 01, 0F, 85, D9, 01, 00, 00, 60, BE, 00, 00, 26, 10, 8D, BE, 00, 10, FA, FF, 57, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46...
 
[+]

Entropy:
7.8611  (probably packed)

Code size:
176 KB (180,224 bytes)

ActiveX Install
Name:
{EF7ADE47-9668-42A5-A350-0945E51AB8E6}


Remove MSVCR71D.DLL - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.