home

ocdeskband.dll

ocdeskband Dynamic Link Library

Pokki

The library ocdeskband.dll has been detected as malware by 1 anti-virus scanner. This file is typically installed with the program Pokki by SweetLabs, Inc..
Publisher:
Pokki  (signed and verified)

Product:
ocdeskband Dynamic Link Library

Version:
1, 0, 0, 1

MD5:
77e2db181428cae73f0c72b24c356a89

SHA-1:
98d3eb664f3f58d18d58f5a896720cf2b6b9a989

SHA-256:
3a2f408174f40f78f0dd4fc6f5c4dc08ec2ae0c0fea30ebc2506ef4859ad27b9

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
4/25/2024 12:14:12 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Win64.Generic.Pokki.Meta
15.12.3.8

File size:
1 MB (1,057,392 bytes)

Product version:
1, 0, 0, 1

Copyright:
Copyright (C) 2010-2011 - SweetLabs, Inc

Original file name:
ocdeskband.dll

File type:
Dynamic link library (Win64 DLL)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\pokki\ocdeskband.dll

Digital Signature
Signed by:
Pokki

Authority:
VeriSign, Inc.

Valid from:
4/25/2011 8:00:00 PM

Valid to:
4/25/2012 7:59:59 PM

Subject:
CN=Pokki, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Pokki, L=San Diego, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
1BCDD0BBE1C67F61E5879491CE2ACB69

File PE Metadata
Compilation timestamp:
7/15/2011 8:00:07 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:JpN+0afYJOI5O7EYK+cIN+XASwTMODgAU4f:JpXOueEYK+cESwTMOEA

Entry address:
0x29A78

Entry point:
48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 20, 49, 8B, F8, 8B, DA, 48, 8B, F1, 83, FA, 01, 75, 05, E8, 2F, 61, 00, 00, 4C, 8B, C7, 8B, D3, 48, 8B, CE, 48, 8B, 5C, 24, 30, 48, 8B, 74, 24, 38, 48, 83, C4, 20, 5F, E9, AB, FE, FF, FF, CC, CC, CC, 48, 85, C9, 74, 37, 53, 48, 83, EC, 20, 4C, 8B, C1, 48, 8B, 0D, C4, 1A, 0C, 00, 33, D2, FF, 15, EC, 88, 09, 00, 85, C0, 75, 17, E8, EF, 33, 00, 00, 48, 8B, D8, FF, 15, EA, 88, 09, 00, 8B, C8, E8, 97, 33, 00, 00, 89, 03, 48, 83, C4, 20, 5B, C3, CC, CC, CC...
 
[+]

Entropy:
6.4565

Code size:
769.5 KB (787,968 bytes)

The file ocdeskband.dll has been discovered within the following program.

Pokki  by SweetLabs, Inc.
The software is typically bundled with third party installers such as Open Candy and Download.com. "The Pokki platform provides users with rich HTML5 apps on their Windows desktop for the ultimate app experience on the PC.
www.pokki.com
37% remove it
 
Powered by Should I Remove It?

Remove ocdeskband.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.