home

sipb.dll

Client

Veristaff. Com Ltd

The module sipb.dll by Veristaff. Com has been detected as adware by 4 anti-malware scanners.
Publisher:
Microsoft  (signed by Veristaff. Com Ltd)

Product:
Client

Description:
sipb

Version:
1.2.0.0

MD5:
3dcb97ddda852db2036f52917a5e529f

SHA-1:
5661230465fdb1835832c552b74c9c1afb38a526

SHA-256:
703ae74f48722b4458e28304fbe3be209ed1ee8a2c4322e11db2c98bc0654a84

Scanner detections:
4 / 68

Status:
Adware

Analysis date:
4/16/2024 5:13:17 PM UTC  (today)

Scan engine
Detection
Engine version

AVG
Generic
2015.0.3365

G Data
Win32.Application.Linkury
14.9.24

Reason Heuristics
PUP.VeristaffCom.E
14.9.1.2

VIPRE Antivirus
Threat.4783962
32210

File size:
45.6 KB (46,712 bytes)

Product version:
1.2.0.0

Copyright:
Copyright © Linkury Inc. 2009

Original file name:
sipb.dll

File type:
Dynamic link library (Win32 DLL)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\smartbar\application\sipb.dll

Digital Signature
Signed by:
Veristaff. Com Ltd

Authority:
GlobalSign nv-sa

Valid from:
7/14/2014 2:37:25 PM

Valid to:
7/15/2015 2:37:25 PM

Subject:
CN=Veristaff. Com Ltd, O=Veristaff. Com Ltd, L=Herzliya, S=Herzliya, C=IL

Issuer:
CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121327C47596D5E76D675A39A539249C1B5

File PE Metadata
Compilation timestamp:
8/17/2014 2:07:25 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
6.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
768:6zkHjMAhk7Vr3nkUsZfH5b5Ie5c4Dkmzdqc11ibySSBfNKbIy+o/I:9MAhkJQb9mokjZbyfNKbk

Entry address:
0xB6B2

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.0705

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
38 KB (38,912 bytes)

Remove sipb.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.