home

koreamessenger1.dll

Version:
1, 0, 0, 1

MD5:
60ee355a4f4dde30c6b677043839c349

SHA-1:
e5ed90790d30413f4562e866a9f19225c9f6ced4

Scanner detections:
4 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/28/2024 10:26:07 PM UTC  (today)

Scan engine
Detection
Engine version

McAfee
potentially unwanted program Adware-Kwsearchguide
5600.6094

Panda Antivirus
Suspicious file
17.03.15.10

Prevx
Medium Risk Malware
3.0

ViRobot
Adware.KWSearch.Do.131072
2009.8.28.1907

File size:
128 KB (131,072 bytes)

Product version:
1, 0, 0, 1

Copyright:
Copyright 1998

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\koreamessenger\koreamessenger1.dll

File PE Metadata
Compilation timestamp:
11/20/2008 6:17:14 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

Entry address:
0xBFAD

Entry point:
55, 8B, EC, 53, 8B, 5D, 08, 56, 8B, 75, 0C, 57, 8B, 7D, 10, 85, F6, 75, 09, 83, 3D, 04, A1, 01, 10, 00, EB, 26, 83, FE, 01, 74, 05, 83, FE, 02, 75, 22, A1, 04, B8, 01, 10, 85, C0, 74, 09, 57, 56, 53, FF, D0, 85, C0, 74, 0C, 57, 56, 53, E8, E7, FE, FF, FF, 85, C0, 75, 04, 33, C0, EB, 4E, 57, 56, 53, E8, 20, 50, FF, FF, 83, FE, 01, 89, 45, 0C, 75, 0C, 85, C0, 75, 37, 57, 50, 53, E8, C3, FE, FF, FF, 85, F6, 74, 05, 83, FE, 03, 75, 26, 57, 56, 53, E8, B2, FE, FF, FF, 85, C0, 75, 03, 21, 45, 0C, 83, 7D, 0C, 00...
 
[+]

Entropy:
5.7037

Developed / compiled with:
Microsoft Visual C++

Code size:
76 KB (77,824 bytes)

Internet Explorer Bar
Display name:
HKEY_CURRENT_USER

CLSID:
{43C43D0E-D29F-4656-8641-5D3026C8C5D8}

CLSID name:
KoreaMessenger

Registry hive:
HKEY_CURRENT_USER

Registry path:
SOFTWARE\Microsoft\Internet Explorer\Explorer Bars


Scan koreamessenger1.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.