home

rrdqbe.dll

The library rrdqbe.dll has been detected as malware by 7 anti-virus scanners. According to AVG, this software downloads additional adware offers during setup.
MD5:
28087b9296dfb0d34b07ba2e6e100bbe

SHA-1:
a6e973e752b70d5ed4147ec4f2abae605bbd904e

SHA-256:
7e379cd22db3a206a800aefee858883b380796062daee4fe640d27fd4d85f43b

Scanner detections:
7 / 68

Status:
Malware

Analysis date:
4/20/2024 12:20:17 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/ATRAPS.Gen2
7.11.30.172

avast!
Win64:Agent-F [Trj]
141025-0

AVG
Trojan horse Downloader.Agent2.BVKX
2014.0.4189

Bkav FE
HW64.packed
1.3.0.6185

ESET NOD32
MSIL/Injector.FWI (variant)
8.10646

IKARUS anti.virus
Trojan.MSIL.Inject
t3scan.1.8.3.0

VIPRE Antivirus
Threat.4150696
34232

File size:
79.5 KB (81,408 bytes)

File type:
Dynamic link library (Win64 DLL)

Common path:
C:\Windows\System32\rrdqbe.dll

File PE Metadata
Compilation timestamp:
10/5/2014 12:38:20 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
9.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
1536:sSwE6SCMzJnnB8XiqxGcNiC/h4Cq2pd0xp1zaJfbGZz2j1AgVHzlAez8e16E9AS9:sSp1zaJDGZKj1Agh9Yqu0

Entry address:
0x310E

Entry point:
FF, 25, EC, 1E, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.3851

Code size:
9 KB (9,216 bytes)

Remove rrdqbe.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.