home

7a11bc7afa64.dll

Bold Letters

The module 7a11bc7afa64.dll by Bold Letters has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Bold Letters  (signed and verified)

MD5:
85121c242a991a7a748506d6abea7824

SHA-1:
b028ad8baa1feefb7cbfa3ee6cd4ca70eda2d93e

SHA-256:
13ef78e14621d4fa9c92aa9b7fb50a0e1e78374be3b6728f609a805f9a750e02

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
2/26/2025 5:33:02 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Yontoo (M)
17.3.1.10

File size:
192.2 KB (196,824 bytes)

File type:
Dynamic link library (Win64 DLL)

Common path:
C:\Program Files\ace race\bin\7a11bc7afa64.dll

Digital Signature
Signed by:
Bold Letters

Authority:
VeriSign, Inc.

Valid from:
4/30/2015 7:00:00 AM

Valid to:
4/30/2016 6:59:59 AM

Subject:
CN=Bold Letters, O=Bold Letters, L=San Diego, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
3AFFEE40CC90699657B10CBDCE8427C6

File PE Metadata
Compilation timestamp:
1/11/2015 6:51:18 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
10.0

Entry address:
0x11748

Entry point:
48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 20, 49, 8B, F8, 8B, DA, 48, 8B, F1, 83, FA, 01, 75, 05, E8, 2F, 61, 00, 00, 4C, 8B, C7, 8B, D3, 48, 8B, CE, 48, 8B, 5C, 24, 30, 48, 8B, 74, 24, 38, 48, 83, C4, 20, 5F, E9, A7, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 66, 66, 0F, 1F, 84, 00, 00, 00, 00, 00, 48, 8B, C1, 49, 83, F8, 08, 72, 53, 0F, B6, D2, 49, B9, 01, 01, 01, 01, 01, 01, 01, 01, 49, 0F, AF, D1, 49, 83, F8, 40, 72, 1E, 48, F7, D9, 83, E1, 07, 74, 06...
 
[+]

Entropy:
6.1837

Code size:
128 KB (131,072 bytes)

Remove 7a11bc7afa64.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.