home

vivo.dll

VIVO

ICQ LTD

The library vivo.dll, “vivo Dynamic Link Library - icq build 2011” has been detected as malware by 3 anti-virus scanners.
Publisher:
goober Networks, Inc.  (signed by ICQ LTD)

Product:
VIVO

Description:
vivo Dynamic Link Library - icq build 2011

Version:
1, 0, 0, 2

MD5:
b10f6657d97dc27d6c3ba61f5596b734

SHA-1:
9e72fb49b8042829f2a94d167007504b90b7ff04

SHA-256:
c792e91179c4fc9b00e0043f1f7709e15ae6d712de9d91740eaf0068b9155a9c

Scanner detections:
3 / 68

Status:
Malware

Analysis date:
4/24/2024 9:12:09 PM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Floxif.H virus
6.3.12010.0

F-Prot
W32/Floxif.B
4.6.5.141

F-Secure
Win32.Floxif.A
5.15.154

File size:
3.1 MB (3,275,215 bytes)

Product version:
1, 0, 0, 2

Copyright:
Copyright (C) 2011 goober Networks, Inc

Trademarks:
Copyright (C) 2011 goober Networks, Inc

Original file name:
vivo.dll

File type:
Dynamic link library (Win32 DLL)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\roaming\icqm\vivo.dll

Digital Signature
Signed by:
ICQ LTD

Authority:
VeriSign, Inc.

Valid from:
8/12/2013 5:00:00 PM

Valid to:
8/12/2016 4:59:59 PM

Subject:
CN=ICQ LTD, OU=ICQ LTD, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=ICQ LTD, L=Tel Aviv, S=Alberta, C=IL

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
3CD0B62DDB9C535FD03D4EF0A75D7CE4

File PE Metadata
Compilation timestamp:
5/4/2011 5:48:19 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0x1FF8B3

Entry point:
E9, 2F, 78, EB, FF, 83, 7D, 0C, 01, 75, 05, E8, 2E, 04, 01, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, E8, 35, 93, 00, 00, 8B, 4D, 08, 89, 48, 14, 5D, C3, E8, 28, 93, 00, 00, 8B, 48, 14, 69, C9, FD, 43, 03, 00, 81, C1, C3, 9E, 26, 00, 89, 48, 14, 8B, C1, C1, E8, 10, 25, FF, 7F, 00, 00, C3, 8B, FF, 55, 8B, EC, 51, 51, 8D, 45, F8, 50, FF, 15, E4, C0, 62, 3A, 8B, 45, F8, 8B, 4D, FC, 6A, 00, 05, 00, 80, C1, 2A, 68, 80, 96, 98, 00, 81, D1, 21, 4E, 62, FE...
 
[+]

Entropy:
6.8518

Packer / compiler:
Xtreme-Protector v1.05

Code size:
2.2 MB (2,271,232 bytes)

Remove vivo.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.