» ResourcesLOC.dll
Overview
Analysis
File Details
Programs (1)

ResourcesLOC.dll

jZip

Discordia Limited

The module ResourcesLOC.dll by Discordia Limited has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program jZip by Discordia Limited which is a potentially unwanted software program.

File name:

ResourcesLOC.dll

Publisher:

Discordia Limited (signed and verified)

Product:

jZip

Description:

jZip resources

Version:

1.1.0.39350

MD5:

bb7c73e4b0ec3d1385b059c73dcf41e3

SHA-1:

1b95e3e972a5cebd74f3c2ac634ef495f3c92849

SHA-256:

4760061cd856d87d13132fedd30a22f1d10387cf47d2b95c70d29ab194a664b8

Scanner detections:

1 / 68

Status:

Potentially unwanted

Note:

Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:

4/25/2024 7:55:51 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Discordia (M)

15.12.22.23

File size:

601.4 KB (615,872 bytes)

Product version:

1.1

Original file name:

ResourcesLOC.dll

File type:

Dynamic link library (Win32 DLL)

Language:

English (United States)

Common path:

C:\Program Files\jzip\resourcesloc.dll

Digital Signature

Signed by:

Discordia Limited

Authority:

Thawte Consulting (Pty) Ltd.

Valid from:

6/19/2007 8:00:00 PM

Valid to:

7/11/2008 7:59:59 PM

Subject:

CN=Discordia Limited, OU=SECURE APPLICATION DEVELOPMENT, O=Discordia Limited, L=Limassol, S=Limassol, C=CY

Issuer:

CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:

11AFC84D429F1051969C3D383A099739

File PE Metadata

Compilation timestamp:

10/24/2007 8:40:07 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

CTPH (ssdeep):

6144:b7GV1qE1cAGpSIDgwJ/9cBzqVCvyyRe3dE4fLdE4fSP:biVcAGpSIDgwJ/9cBzqM6y

Entry point:

4D, 5A, 90, 00, 03, 00, 00, 00, 04, 00, 00, 00, FF, FF, 00, 00, B8, 00, 00, 00, 00, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, B0, 00, 00, 00, 0E, 1F, BA, 0E, 00, B4, 09, CD, 21, B8, 01, 4C, CD, 21, 54, 68, 69, 73, 20, 70, 72, 6F, 67, 72, 61, 6D, 20, 63, 61, 6E, 6E, 6F, 74, 20, 62, 65, 20, 72, 75, 6E, 20, 69, 6E, 20, 44, 4F, 53, 20, 6D, 6F, 64, 65, 2E, 0D, 0D, 0A, 24, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

5.7309

The file ResourcesLOC.dll has been discovered within the following program.

jZip by Discordia Limited

Publisher's description - “jZip lets you open files in many archive formats, including the popular RAR format. RAR files are compressed archives, which are files that are designed to store both single and groups of related files while minimizing their memory size to save on storage space.”

www.jzip.com

71% remove it

Remove ResourcesLOC.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.