home

swfcam.dll

balesio GmbH & Co. KG

The library swfcam.dll has been detected as malware by 1 anti-virus scanner.
Publisher:
balesio GmbH & Co. KG  (signed and verified)

MD5:
c5afcaf1f090d589c9f002d02220f490

SHA-1:
679d8afc5aa960558298c069d9b9d7b8cff12569

SHA-256:
b9031852874fafaadd62f4f5b895933bd77e8bb52c2b3842e07166810eddf3d2

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
4/23/2024 6:07:38 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Unnamed.Threat.14
14.9.30.5

File size:
226.3 KB (231,712 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\allcapture enterprise 3.0\swfcam.dll

Digital Signature
Signed by:
balesio GmbH & Co. KG

Authority:
VeriSign, Inc.

Valid from:
3/16/2007 1:00:00 AM

Valid to:
3/16/2008 12:59:59 AM

Subject:
CN=balesio GmbH & Co. KG, OU=Support, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=balesio GmbH & Co. KG, L=Reutlingen, S=Baden Wuerttemberg, C=DE

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
0225B1FAE29471A316F7D23218D59B22

File PE Metadata
Compilation timestamp:
11/28/2007 3:40:05 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.0

CTPH (ssdeep):
6144:g9b+xT079Mjgymka9BNCQwvP6bQ7yMP+DE827KtO:2M0pMjgym9sZ6b7MP+Dd24O

Entry address:
0x4A001

Entry point:
60, E8, 03, 00, 00, 00, E9, EB, 04, 5D, 45, 55, C3, E8, 01, 00, 00, 00, EB, 5D, BB, ED, FF, FF, FF, 03, DD, 81, EB, 00, A0, 04, 00, 80, 7D, 4D, 01, 75, 0C, 8B, 74, 24, 28, 83, FE, 01, 89, 5D, 4E, 75, 31, 8D, 45, 53, 50, 53, FF, B5, ED, 09, 00, 00, 8D, 45, 35, 50, E9, 82, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, B8, F8, C0, A5, 23, 50, 50, 03, 45, 4E, 5B, 85, C0, 74, 1C, EB, 01, E8, 81, FB, F8, C0, A5, 23, 74, 35, 33, D2...
 
[+]

Packer / compiler:
ASProtect SKE, 0x2.1x

Code size:
176 KB (180,224 bytes)

Remove swfcam.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.