» tuwihavo.dll
Overview
Analysis
File Details

tuwihavo.dll

The library tuwihavo.dll has been detected as malware by 40 anti-virus scanners.

File name:

tuwihavo.dll

MD5:

1857ddf61b7d7610a3b5e6ab735544d6

SHA-1:

710387c89d23342c80f91d0d4e2e781ab6cbee9e

SHA-256:

a48a7becc6571f61d7ca3c6c1971191185980ff00bba722ca5288493b0f4f16b

Scanner detections:

40 / 68

Status:

Malware

Analysis date:

4/19/2024 10:40:18 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Worm.Generic.101897

6207115

AegisLab AV Signature

Troj.Downloader

2.1.4+

Agnitum Outpost

Trojan.FakeAlert.Gen

7.1.1

AhnLab V3 Security

Trojan/Win32.FakeAV

2014.12.20

Avira AntiVirus

TR/Crypt.XPACK.Gen

7.11.196.234

avast!

Win32:MalOb-T [Cryp]

141214-1

AVG

Trojan horse Vundo.HJ

2014.0.4189

Bitdefender

Worm.Generic.101897

1.0.20.1775

Bkav FE

HW32.Packed

1.3.0.6267

Clam AntiVirus

Trojan.Downloader-78062

0.98/19815

Comodo Security

Win32.PkdTdss

20423

Dr.Web

Trojan.Siggen.3283

9.0.1.05190

Emsisoft Anti-Malware

Worm.Generic.101897

9.0.0.4668

ESET NOD32

Win32/KillAV.NFM trojan

7.0.302.0

Fortinet FortiGate

W32/PackTDss.K!tr

12/21/2014

F-Prot

W32/Alureon.FKT

4.6.5.141

F-Secure

Worm.Generic.101897

5.13.68

G Data

Worm.Generic.101897

14.12.24

IKARUS anti.virus

Trojan.Win32.FakeSpyguard

t3scan.1.8.5.0

K7 AntiVirus

Backdoor

13.188.14395

Kaspersky

Packed.Win32.TDSS

15.0.0.543

McAfee

Trojan.Vundo.gen.bq

16.8.708.2

Microsoft Security Essentials

Threat.Undefined

1.191.519.0

MicroWorld eScan

Worm.Generic.101897

15.0.0.1065

NANO AntiVirus

Trojan.Win32.Tdss.btyvr

0.28.6.64267

Norman

Worm.Generic.101897

04.12.2014 14:30:06

nProtect

Trojan/W32.Agent.39424.EI

14.12.19.01

Panda Antivirus

Generic Malware

14.12.21.12

Qihoo 360 Security

Malware.QVM39.Gen

1.0.0.1015

Quick Heal

Win32.Packed.TDSS.aa.5

12.14.14.00

Reason Heuristics

Threat.Win.Reputation.IMP

14.12.21.23

Sophos

Virus 'Troj/Virtum-Gen'

5.09

SUPERAntiSpyware

Trojan.Agent/Gen-Kundo

10163

Total Defense

Win32/TDSS!packed

37.0.11339

Trend Micro House Call

BKDR_TIDIES.SMA

7.2.355

Trend Micro

BKDR_TIDIES.SMA

10.465.21

Vba32 AntiVirus

BScope.Malware-Cryptor.Win32.Fakir

3.12.26.3

VIPRE Antivirus

Threat.4318456

35418

ViRobot

Trojan.Win32.Tdss.39424.JF[h]

2014.3.20.0

Zillya! Antivirus

Downloader.Agent.Win32.39368

2.0.0.2011

File size:

38.5 KB (39,424 bytes)

File type:

Dynamic link library (Win32 DLL)

Common path:

C:\ProgramData\application data\tuwihavo\tuwihavo.dll

File PE Metadata

Compilation timestamp:

9/18/2009 4:15:56 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

768:oR0Tmhcx7O1A9K3MtvqOqiirVSn9omKqIGgU4c6e610I31c:oRux7O1A9K0/Z5J4cMbc

Entry address:

0x16AA

Entry point:

E8, 87, F9, FF, FF, C3, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

7.3935

Code size:

12 KB (12,288 bytes)

Remove tuwihavo.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.