assleech.dll

The library assleech.dll has been detected as malware by 8 anti-virus scanners. The file has been seen being downloaded from ln.syncusercontent.com and multiple other hosts.
MD5:
4e1ee0136a5f497ed0868b2be83cd720

SHA-1:
37808c194fe1a1a12f12085a8a50a9d9cb949c4a

SHA-256:
1e7ec1e3afdf74b938573c3a3fb876001bc6c74784a9e42f16ca229522cf430d

Scanner detections:
8 / 68

Status:
Malware

Analysis date:
12/26/2024 2:52:08 AM UTC  (today)

Scan engine
Detection
Engine version

AhnLab V3 Security
Trojan/Win32.Agent
2016.04.17

Avira AntiVirus
TR/Black.Gen2
8.3.3.4

AVG
Win32/Blacked
2017.0.2771

Bkav FE
HW32.Packed
1.3.0.7744

ESET NOD32
Win32/Packed.VMProtect.ABO (variant)
10.13346

Qihoo 360 Security
HEUR/QVM36.0.0000.Malware.Gen
1.0.0.1120

Rising Antivirus
PE:Malware.Generic(Thunder)!1.A1C4 [F]
23.00.65.16415

Sophos
Mal/VMProtBad-A
4.98

File size:
143.5 KB (146,944 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\downloads\assleech.dll

File PE Metadata
Compilation timestamp:
4/17/2016 2:14:41 AM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
14.0

CTPH (ssdeep):
3072:TnBtS3zWgtm2foCWisrdCeGmvSB5MjpikT7sZybvOzOSadJ:rBtkzWPCPKCnB5qT7jSSJ

Entry address:
0x1B8A4

Entry point:
E8, FE, D9, 00, 00, 42, CA, 6E, FD, A9, 4B, 2D, 91, F9, 66, 39, F4, BB, 75, 1D, CE, 79, F3, 9C, E4, 8F, F1, 92, 1B, C9, 40, E8, 50, F3, 70, 16, D3, 82, EA, 8D, 0A, B0, 4C, F0, 57, 3B, 0A, 3B, 1B, 7F, CB, 74, CC, 6A, A9, B1, A4, 4F, 32, DA, 51, 0F, A3, 46, 02, 05, EF, FE, 7A, 5E, 2D, 6B, 19, AC, 1C, E1, BB, E9, B5, 64, A7, 5B, 09, FC, B0, 1F, 3B, 0D, 1C, 06, E8, 92, 8D, 35, 16, 09, AD, C4, AE, BD, 99, 9D, 64, 11, 5F, 0C, 98, 55, 7A, 32, 51, F4, 91, AC, 42, FE, 6A, 58, 8D, 2F, 8D, 6A, 4F, FA, 82, 71, A9, 8C...
 
[+]

Entropy:
7.5223

Code size:
16.5 KB (16,896 bytes)

The file assleech.dll has been seen being distributed by the following 2 URLs.

Remove assleech.dll - Powered by Reason Core Security