home

sielu22.dll

MD5:
be6705a7f4194e5051e74831d3f17d41

SHA-1:
269d3865629d63b9213f821746d3be71d785c049

SHA-256:
883e2593d1f66a77fae46d3fa78133b221a4d685ce3b1ab32187b3e5fa9d2232

Scanner detections:
7 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
5/21/2024 10:02:17 PM UTC  (today)

Scan engine
Detection
Engine version

AegisLab AV Signature
Virus.W32.Heur!c
2.1.4+

AVG
Win32/Heur
2017.0.2840

IKARUS anti.virus
Win32.Heur
t3scan.2.0.4.0

McAfee
Artemis!BE6705A7F419
5600.6496

Qihoo 360 Security
HEUR/QVM38.0.Malware.Gen
1.0.0.1077

Total Defense
Win32/Ramnit.DW
37.1.62.1

VIPRE Antivirus
Trojan.Win32.Generic
46848

File size:
2.2 MB (2,281,472 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\sielu_mh\sielu22.dll

File PE Metadata
Compilation timestamp:
1/18/2016 8:08:08 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
49152:YX9udTzEBV5fMV5yvAjz749t7DtRva7p72gR2RZN0Mvb:O9ue7mnysH4RRYAN0Q

Entry address:
0x7F91B8

Entry point:
60, E8, 00, 00, 00, 00, 5D, 81, ED, 06, 00, 00, 00, 81, ED, B8, 91, 7F, 00, E9, 4C, 00, 00, 00, 45, 4E, 49, 47, 4D, 41, 04, 00, E0, 07, 01, 00, 12, 00, 13, 00, 0D, 00, 34, 00, B3, 70, 52, 50, 8D, 82, 19, A8, 79, DB, 86, F1, 41, 32, 5E, CA, 2C, AD, 58, 5B, 01, 00, 00, 00, 15, 3F, 95, 31, 9C, 43, D6, A8, 44, 20, F9, 0B, 3B, 8B, A1, C1, 1B, EC, E6, 9C, 76, 67, B1, F5, E5, 1F, FF, 79, ED, F3, 56, DA, 8A, 84, 24, 28, 00, 00, 00, 80, F8, 01, 0F, 84, 07, 00, 00, 00, 61, 33, C0, 40, C2, 0C, 00, E9, 04, 00, 00, 00...
 
[+]

Packer / compiler:
ASPack v1.08.04

Code size:
3 KB (3,072 bytes)

The file sielu22.dll has been seen being distributed by the following 3 URLs.

http://przeklej.org/file/.../Pj8mkpofQFEIwZKts51e

http://www.speedyshare.com/Dpgwu/0e7f6a68/.../sielu22.dll

http://poczta.onet.pl/download.html?kid=36000076

Scan sielu22.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.