» 316478e5.dll
Overview
Analysis
File Details

316478e5.dll

Bit-Trejd

File name:

316478e5.dll

Publisher:

Bit-Trejd (signed and verified)

MD5:

2633caf2e142d1a479a8d16e3c428aac

SHA-1:

39714be26a2600a30c3ee91484ec0ecf87270a2f

SHA-256:

84cc597f558d16086e54d86e2a84981eb0202b9bea489d3fc209490eaf158b87

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

11/15/2024 9:22:22 PM UTC (today)

File size:

50.2 KB (51,424 bytes)

File type:

Dynamic link library (Win32 DLL)

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\316478e5.dll

Digital Signature

Signed by:

Bit-Trejd

Authority:

COMODO CA Limited

Valid from:

5/30/2016 5:00:00 AM

Valid to:

5/31/2017 4:59:59 AM

Subject:

CN=Bit-Trejd, OU=IT, O=Bit-Trejd, STREET=1st Kolobovskij pereulok d. 27/3 str.3 office 30, L=Moscow, S=Moscow, PostalCode=127051, C=RU

Issuer:

CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

54460E1FCD612CD3377AC2CD76E4240F

File PE Metadata

Compilation timestamp:

1/31/2016 2:20:21 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

3.0

CTPH (ssdeep):

768:DflUFLn/bPUEKltzzYNaKiIW8a3DPnxrSpoULGlubunPU+Z651ZfIyDoQ4uikO:5UFLnT8XDzUNvWP0plKubsPwGVuikO

Entry address:

0x5726

Entry point:

55, 8B, EC, 83, EC, 58, C7, 45, D0, 64, 00, 00, 00, C7, 05, A4, C0, 00, 10, F7, 5D, 0C, 00, 83, 65, C8, 00, C7, 45, B8, 14, 00, 00, 00, A1, 14, AB, 00, 10, 89, 45, BC, C7, 05, AC, C1, 00, 10, 05, 00, 00, 00, A1, 98, AA, 00, 10, 89, 45, E0, C7, 45, CC, 98, AB, 00, 10, 83, 25, AC, C1, 00, 10, 00, C7, 45, D4, 0D, 00, 00, 00, C7, 45, DC, 73, FD, 09, 00, A1, A0, C2, 00, 10, 0D, 03, D9, 09, 00, A3, A0, C2, 00, 10, 83, 65, B4, 00, EB, 07, 8B, 45, B4, 40, 89, 45, B4, 83, 7D, B4, 04, 73, 70, A1, 94, C3, 00, 10, 83... 
[+]

Developed / compiled with:

Microsoft Visual C++

Code size:

32.5 KB (33,280 bytes)

Scan 316478e5.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.