home

yfpuzzle.ocx

Hyundai Securities Co., Ltd.

Publisher:
Hyundai Securities  (signed by Hyundai Securities Co., Ltd.)

Description:
현대증권 통신프로그램

Version:
2.0.0.0

MD5:
7e4b0d281af30a621bcf0190752f8bd3

SHA-1:
6e7bf86946bd932651588437d9891847d2edea28

SHA-256:
6500fbaaaffb1f532583bc52fb59bf5d9ece1c7a5b1a73e0e29b4ac53f5a25a6

Scanner detections:
3 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/25/2024 11:43:39 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Bitdefender
Gen:Trojan.Heur2.BDT.xC9@aqnkJheGq
1.0.20.565

F-Secure
Gen:Trojan.Heur2.BDT.xC9@aqnkJheGq
11.2014-23-04_4

G Data
Gen:Trojan.Heur2.BDT.xC9@aqnkJheGq
14.4.22

File size:
381.5 KB (390,616 bytes)

Product version:
2.0.0.0

File type:
OLE control extension (Win32 OCX)

Common path:
C:\windows\downloaded Program Files\yfpuzzle.ocx

Digital Signature
Signed by:
Hyundai Securities Co., Ltd.

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
9/13/2007 6:00:45 PM

Valid to:
9/14/2009 5:55:39 PM

Subject:
CN="Hyundai Securities Co., Ltd.", OU=Cyber Team, O="Hyundai Securities Co., Ltd.", L=Youngdungpo-Gu, S=Seoul, C=KR

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
39C0895D3F74D11A278DE8BC248833FF

File PE Metadata
Compilation timestamp:
6/20/1992 7:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
6144:1DGzGQGEDr4tLkhQfGnhkAoNI0daIGaVPiinthHGX/HyQPuZFncW0FTCN:1KzGQlXhC2eAoNvdadapt9GXVGfcW0FY

Entry address:
0x50800

Entry point:
55, 8B, EC, 83, C4, B4, B8, 60, 06, 45, 00, E8, 8C, 5F, FB, FF, E8, 77, 32, FB, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.5694

Developed / compiled with:
Microsoft Visual C++

Code size:
318.5 KB (326,144 bytes)

ActiveX Install
Name:
{DA7A0DA9-0417-48EF-ABBF-157905BD8B65}


Scan yfpuzzle.ocx - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.