» smdmfldr_u.dll
Overview
Analysis
File Details

smdmfldr_u.dll

AZTEC MEDIA INC.

The module smdmfldr_u.dll by AZTEC MEDIA INC has been detected as adware by 12 anti-malware scanners.

File name:

smdmfldr_u.dll

Publisher:

AZTEC MEDIA INC. (signed and verified)

MD5:

ecde9d3b0d228e4f5f38875a8bb042c7

SHA-1:

f469a17135d8061fcd80f53c0c188b412b5eb29d

SHA-256:

9b83cd8978f2d118fcb3ab21b21da8f359e450b223d098b852b1edd8b7ea12b7

Scanner detections:

12 / 68

Status:

Adware

Analysis date:

4/26/2024 11:31:31 PM UTC (a few moments ago)

Scan engine

Detection

Engine version

Baidu Antivirus

Adware.Win32.SearchSuite

4.0.3.141218

Comodo Security

UnclassifiedMalware

20410

ESET NOD32

Win64/Toolbar.SearchSuite.C potentially unwanted application

7.0.302.0

Fortinet FortiGate

Riskware/SearchSuite

12/18/2014

F-Prot

W64/SearchSuite.A.gen

v6.4.7.1.166

G Data

Win64.Application.AztecSystemk

14.12.24

Kaspersky

not-a-virus:WebToolbar.Win64.SearchSuite

15.0.0.543

McAfee

Program.SearchSuite

16.8.708.2

Panda Antivirus

Trj/CI.A

14.12.18.11

Qihoo 360 Security

Win32/Virus.WebToolbar.d3d

1.0.0.1015

Reason Heuristics

PUP.AZTECMEDIAINC.K

14.12.18.21

Sophos

PUA 'SearchSuite' (of type Adware)

5.09

File size:

39 KB (39,952 bytes)

File type:

Dynamic link library (Win64 DLL)

Common path:

C:\Program Files\settings manager\smdmf\x64\smdmfldr_u.dll

Digital Signature

Signed by:

AZTEC MEDIA INC.

Authority:

Thawte, Inc.

Valid from:

1/29/2014 12:00:00 AM

Valid to:

5/20/2015 12:59:59 AM

Subject:

CN=AZTEC MEDIA INC., OU=Development, O=AZTEC MEDIA INC., L=Panama City, S=Panama, C=PA

Issuer:

CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:

7DE0D719BBAF922D3A980DBD523B959A

File PE Metadata

Compilation timestamp:

12/15/2014 1:54:34 AM

OS version:

5.2

OS bitness:

Win64

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

384:jxECAtEO8fYhpDw707O5zQ8TYVkW2k7C5Tq/TpnJt7S7ZQVsCSCmAzn76nEHTuSp:SCASrfYjDtmQ3iWeRq7pnf7S6B36i

Entry address:

0x5D70

Entry point:

4C, 89, 44, 24, 18, 89, 54, 24, 10, 48, 89, 4C, 24, 08, 48, 83, EC, 28, 83, 7C, 24, 38, 01, 75, 52, 48, 8B, 44, 24, 30, 48, 89, 05, D3, 35, 00, 00, E8, 56, 13, 00, 00, 0F, B6, C0, 85, C0, 74, 30, E8, 7A, B4, FF, FF, E8, 45, 00, 00, 00, E8, 50, B2, FF, FF, E8, 9B, FD, FF, FF, 48, 8B, C8, E8, D3, FD, FF, FF, E8, 4E, FC, FF, FF, 48, 8B, C8, E8, 96, 00, 00, 00, E8, 11, DC, FF, FF, EB, 0A, 48, 8B, 4C, 24, 30, E8, 85, 13, 00, 00, B8, 01, 00, 00, 00, 48, 83, C4, 28, C3, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC... 
[+]

Entropy:

5.8756

Code size:

25 KB (25,600 bytes)

Remove smdmfldr_u.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.