» orm01luoubhs0palirb0axvwq9vt6ud5.dll
Overview
Analysis
File Details

orm01luoubhs0palirb0axvwq9vt6ud5.dll

The library orm01luoubhs0palirb0axvwq9vt6ud5.dll has been detected as malware by 21 anti-virus scanners.

File name:

MD5:

f812fba4b87167c8d3cdc909bdb3ea86

SHA-1:

fdc264183f739b9339777c539a6ff807cf4d3363

SHA-256:

30dff5103f3a517515c53f4d07f984173b6a50afc69fa52f7145213a41eea20c

Scanner detections:

21 / 68

Status:

Malware

Analysis date:

4/27/2024 3:46:34 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.Generic.14974497

482

Avira AntiVirus

TR/Crypt.TPM.Gen

8.3.2.2

Arcabit

Trojan.Generic.DE47E21

1.0.0.526

AVG

Packed2_c

2016.0.2960

Baidu Antivirus

Trojan.Win32.Themida

4.0.3.151011

Bitdefender

Trojan.Generic.14974497

1.0.20.1420

Bkav FE

W32.HfsAutoB

1.3.0.7133

ESET NOD32

Win32/Packed.Themida.AAL trojan

7.0.302.0

Fortinet FortiGate

W32/Virtum!tr

10/11/2015

F-Secure

Trojan.Generic.14974497

11.2015-11-10_1

G Data

Trojan.Generic.14974497

15.10.25

IKARUS anti.virus

Trojan.Win32.Themida

t3scan.1.9.5.0

K7 AntiVirus

Trojan

13.210.17196

Kaspersky

UDS:DangerousObject.Multi.Generic

14.0.0.1293

MicroWorld eScan

Trojan.Generic.14974497

16.0.0.852

Qihoo 360 Security

HEUR/QVM39.1.Malware.Gen

1.0.0.1015

Quick Heal

(Suspicious) - DNAScan

9.15.14.00

Rising Antivirus

PE:Malware.Generic/QRS!1.9E2D[F1]

23.00.65.151009

Sophos

Virus 'Troj/Virtum-Gen'

5.15

Trend Micro

TROJ_GEN.R047C0RI715

10.465.11

VIPRE Antivirus

Trojan.Win32.Generic

43698

File size:

880.5 KB (901,632 bytes)

File type:

Dynamic link library (Win32 DLL)

Common path:

C:\windows\syswow64\orm01luoubhs0palirb0axvwq9vt6ud5.dll

File PE Metadata

Compilation timestamp:

9/2/2015 2:18:37 PM

OS version:

6.0

OS bitness:

Win32

Subsystem:

Windows Console

Linker version:

11.0

CTPH (ssdeep):

24576:nE0Hh0AGxXDm+WwBTfwVlGreDiiaBKgF0oUxHuZ:nE7vWw14VT2ipJa

Entry address:

0x1F8000

Entry point:

53, 89, E3, 81, C3, 04, 00, 00, 00, 56, BE, 04, 00, 00, 00, 81, EB, 73, 5D, 92, 23, 29, F3, 81, C3, 73, 5D, 92, 23, 5E, 87, 1C, 24, 5C, 52, 89, E2, 81, C2, 04, 00, 00, 00, 81, EA, 04, 00, 00, 00, 87, 14, 24, 5C, 89, 1C, 24, 89, 04, 24, 83, EC, 04, 89, 0C, 24, 89, 1C, 24, E8, 01, 00, 00, 00, CC, 8B, 04, 24, 55, 54, 5D, 81, C5, 04, 00, 00, 00, 83, C5, 04, 87, 2C, 24, 5C, 81, EC, 04, 00, 00, 00, 89, 0C, 24, 89, C1, 89, CB, 8B, 0C, 24, 81, C4, 04, 00, 00, 00, 55, BD, 49, 1D, 0C, 55, 81, CD, C3, 2B, FA, 24, 81... 
[+]

Entropy:

7.9079 (probably packed)

Code size:

98 KB (100,352 bytes)

Remove orm01luoubhs0palirb0axvwq9vt6ud5.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.