» shield.dll
Overview
Analysis
File Details

shield.dll

The library shield.dll has been detected as malware by 12 anti-virus scanners.

File name:

shield.dll

MD5:

3ad7b07963f43269e0c75b35133fca8a

SHA-1:

f9257cfbf3b696009d7693572733839e4a8f6715

SHA-256:

57da963c5e14029e0c640f4e2e75ae58660af059ceefe97ab28a17d13452753d

Scanner detections:

12 / 68

Status:

Malware

Analysis date:

4/27/2024 12:34:25 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Trojan.Heur.LP.QI4aaakxfCmi

-40

Avira AntiVirus

TR/Crypt.XPACK.Gen

8.3.3.4

Arcabit

Trojan.Heur.LP.QI4aaakxfCmi

1.0.0.798

Bitdefender

Gen:Trojan.Heur.LP.QI4aaakxfCmi

1.0.20.370

Bkav FE

W32.HfsAutoA

1.3.0.8876

Emsisoft Anti-Malware

Gen:Trojan.Heur.LP.QI4aaakxfCmi

8.17.03.15.11

F-Secure

Gen:Trojan.Heur.LP.QI4aaakxfCmi

11.2017-15-03_4

G Data

Gen:Trojan.Heur.LP.QI4aaakxfCmi

17.3.A:25.11112B:25.9052

IKARUS anti.virus

Trojan.Crypt

0.2.1.2

Microsoft Security Essentials

Trojan:Win32/Dynamer!ac

1.1.13504.0

MicroWorld eScan

Gen:Trojan.Heur.LP.QI4aaakxfCmi

18.0.0.222

Qihoo 360 Security

HEUR/QVM39.1.0000.Malware.Gen

1.0.0.1120

File size:

2.7 MB (2,799,616 bytes)

File type:

Dynamic link library (Win32 DLL)

Common path:

C:\users\{user}\downloads\yourko\shield.dll

File PE Metadata

Compilation timestamp:

3/8/2017 7:26:16 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

14.10

Entry address:

0x785060

Entry point:

53, 51, B9, 00, 00, 00, 00, 89, 4C, 24, 04, 59, 83, EC, 04, 89, 14, 24, C7, 04, 24, 01, 00, 00, 00, 50, C7, 04, 24, 4B, 00, C8, 37, 81, 2C, 24, 06, 18, F6, 3B, 81, 0C, 24, 3E, 76, 6D, 6F, FF, 0C, 24, FF, 04, 24, 81, 04, 24, 81, 01, 42, 00, C7, 04, 24, 00, 00, 00, 10, E8, 00, 00, 00, 00, 81, 2C, 24, A8, 50, 78, 10, 81, 04, 24, 00, 40, 78, 10, E9, 45, 15, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Code size:

726 KB (743,424 bytes)

Remove shield.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.