home

odeskhook82.dll

oDesk Team

oDesk Corporation

The library odeskhook82.dll has been detected as malware by 3 anti-virus scanners.
Publisher:
oDesk Corporation  (signed and verified)

Product:
oDesk Team

Description:
oDesk Hook

Version:
3.10.34.0

MD5:
89f4fb75520a4ee51a9ce33e128abbba

SHA-1:
53c7f7c3ccfa2e48fde011bf0da5eea4f0e88396

SHA-256:
f4b2b61f704371d864b52c9791a4fb145e9eacfcd10a6800304e238d036a2724

Scanner detections:
3 / 68

Status:
Malware

Analysis date:
4/25/2024 12:06:12 AM UTC  (today)

Scan engine
Detection
Engine version

AVG
Win32/Floxif.A
2013.0.4477

ESET NOD32
Win32/Floxif.H virus
6.3.12010.0

F-Prot
W32/Floxif.B
4.6.5.141

File size:
126.7 KB (129,695 bytes)

Product version:
3.10.33

Copyright:
(c) 2003-2014 oDesk Corporation. All Rights Reserved.

Original file name:
oDeskHook.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\odesk\odeskhook82.dll

Digital Signature
Signed by:
oDesk Corporation

Authority:
DigiCert Inc

Valid from:
3/1/2013 6:00:00 AM

Valid to:
5/3/2016 6:00:00 PM

Subject:
CN=oDesk Corporation, O=oDesk Corporation, L=Redwood City, S=California, C=US

Issuer:
CN=DigiCert Assured ID Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
07E51CB9741A1E6F902C837E2A1CA84B

File PE Metadata
Compilation timestamp:
7/21/2014 11:41:38 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
1536:MViLyGL9wqPn29RHkBOYTN2s+zheW6BVrqzCJ3bdDY+W14N4NmzWlIA7hKRQAOQo:MO1n29RHk52lQBV+UdE+rECWp7hKzyV

Entry address:
0x184F

Entry point:
E9, EA, 45, 00, 00, 83, 7D, 0C, 01, 75, 05, E8, 0D, 17, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 80, AD, 00, 10, 89, 0D, 7C, AD, 00, 10, 89, 15, 78, AD, 00, 10, 89, 1D, 74, AD, 00, 10, 89, 35, 70, AD, 00, 10, 89, 3D, 6C, AD, 00, 10, 66, 8C, 15, 98, AD, 00, 10, 66, 8C, 0D, 8C, AD, 00, 10, 66, 8C, 1D, 68, AD, 00, 10, 66, 8C, 05, 64, AD, 00, 10, 66, 8C, 25, 60, AD, 00, 10, 66, 8C, 2D, 5C, AD, 00, 10, 9C, 8F, 05, 90, AD...
 
[+]

Entropy:
7.4383

Packer / compiler:
Xtreme-Protector v1.05

Code size:
26.5 KB (27,136 bytes)

Remove odeskhook82.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.