home

assleech.dll

The library assleech.dll has been detected as malware by 7 anti-virus scanners. The file has been seen being downloaded from ln.syncusercontent.com.
MD5:
90d45d9afd30d22060a425cc125318b3

SHA-1:
1750a71f882354d2042e0ad5e73de40cb1f61a26

SHA-256:
514917e8c5186156490a4c00d7471f5ad685eb25a6a9860f01dd7a464f3278a7

Scanner detections:
7 / 68

Status:
Malware

Analysis date:
12/26/2024 2:07:49 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Black.Gen2
8.3.3.4

AVG
Win32/Blacked
2017.0.2770

Bkav FE
HW32.Packed
1.3.0.7744

ESET NOD32
Win32/Packed.VMProtect.ABO (variant)
10.13350

Qihoo 360 Security
HEUR/QVM36.0.0000.Malware.Gen
1.0.0.1120

Rising Antivirus
PE:Malware.Generic(Thunder)!1.A1C4 [F]
23.00.65.16416

Sophos
Mal/VMProtBad-A
4.98

File size:
154 KB (157,696 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\downloads\assleech.dll

File PE Metadata
Compilation timestamp:
4/18/2016 3:41:06 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
14.0

CTPH (ssdeep):
3072:xNrfTT+/oHv8/h/MNfQhPEECN2c0MCFX/D+CBhfe5Sb:xpT6/kv8/h/MWc0DFXNfewb

Entry address:
0x1185AE

Entry point:
9C, 66, 89, 04, 24, 50, 9C, C7, 44, 24, 08, 75, 36, 70, E9, E9, 58, 43, 00, 00, 8D, 64, 24, 08, 0F, 84, BA, 74, FF, FF, 60, 9C, 8D, 64, 24, 24, E9, CB, 74, FF, FF, 00, 00, 49, 6E, 74, 65, 72, 6E, 65, 74, 4F, 70, 65, 6E, 55, 72, 6C, 41, 00, 04, C1, 9B, 92, 93, B4, 92, C7, C5, 90, F6, 97, D5, DC, F9, 3A, 43, 24, 21, 5E, 60, 29, 7F, 16, 5B, 45, 19, 26, 01, 15, 07, 33, 45, 16, 34, 75, 23, 05, 43, 2A, 6C, 3D, 44, 12, D8, D2, CE, EC, F8, 40, C6, 94, D5, 87, EE, AB, CD, FD, 45, 68, 48, 87, A3, 04, 3E, 12, AA, 87...
 
[+]

Entropy:
7.5068

Code size:
22.5 KB (23,040 bytes)

The file assleech.dll has been seen being distributed by the following URL.

https://ln.syncusercontent.com/mfs-077d7e908948b77d680a676b185fd1838510d3304c1b098f26871a1b12a2b96c1/p/Assleech.dll?sharelink_id=165727000008&linkoid=8000008&linkcachekey=ec2106360&datakey=XE/XjEDdrgvHDuMH5vqQcFSym0zBt2ELzsX/OQLNzRSM3gqnG3OzuMHJuN2f lCQiA5HmoLvA283ea73DeV HFkUOaAM/h8GFK28f MdGb7FJ7niC1 4MjYIZwPnI422XtBTEgtJvedBOu/00h8PXbLn5vm5oXR sFhAEYD7qQSaPNL4lzw2YR9bzYkw88HNE7KR72MCyIySWY4xf6/zCmNWbAiociUk3qoi79NFM6bQ032/pIDtrie9V/.../kTqvuyHQjEcnWokPUQuVx6HjecVG203xee7bK scxTPO80PAFdBcg6Tf37RPRg&mode=100&header1=Q29udGVudC1UeXBlOiBhcHBsaWNhdGlvbi9vY3RldC1zdHJlYW0&header2=Q29udGVudC1EaXNwb3NpdGlvbjogYXR0YWNobWVudDsgZmlsZW5hbWU9IkFzc2xlZWNoLmRsbCI

Remove assleech.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.