» autofwrp64.dll
Overview
Analysis
File Details

autofwrp64.dll

I at cover.

Bonezzi Switzer Murphy and Polito Company Lpa

The library autofwrp64.dll has been detected as malware by 19 anti-virus scanners.

File name:

autofwrp64.dll

Publisher:

Bonezzi Switzer Murphy and Polito Company Lpa

Product:

I at cover.

Version:

8,9,9,9

MD5:

2fa0c1b7a09035c1dfefaaa534ae154a

SHA-1:

b9b54359764f9661dbf938b7275b11ffdfc5aefb

SHA-256:

cc74ac2034aa343a2b0a952ccc76e986bf24ebcc83d8f97ef9910da22b6aeded

Scanner detections:

19 / 68

Status:

Malware

Analysis date:

11/29/2024 4:28:23 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.Spy.Ursnif.BC

-40

Arcabit

Trojan.Spy.Ursnif.BC

1.0.0.793

avast!

Win64:Malware-gen

2014.9-170316

AVG

PSW.Agent

2018.0.2438

Bitdefender

Trojan.Spy.Ursnif.BC

1.0.20.375

Emsisoft Anti-Malware

Trojan.Spy.Ursnif.BC

8.17.03.16.03

ESET NOD32

Win64/PSW.Papras (variant)

11.14781

Fortinet FortiGate

W64/Papras.Z!tr.pws

3/16/2017

F-Secure

Trojan.Spy.Ursnif.BC

11.2017-16-03_5

G Data

Trojan.Spy.Ursnif.BC

17.3.25

IKARUS anti.virus

Trojan.Win64.PSW

0.1.3.4

McAfee

Artemis!2FA0C1B7A090

5600.6094

Microsoft Security Essentials

TrojanSpy:Win64/Ursnif.A

1.1.13407.0

MicroWorld eScan

Trojan.Spy.Ursnif.BC

18.0.0.225

Panda Antivirus

Trj/CI.A

17.03.16.03

Rising Antivirus

Malware.Generic!WD8Z9rAkBqB@2 (thunder)

23.00.65.17314

Sophos

Mal/Papras-D

4.98

Trend Micro House Call

TROJ_GEN.R072C0DAG17

7.2.75

Trend Micro

TROJ_GEN.R072C0DAG17

10.465.16

File size:

95 KB (97,280 bytes)

Product version:

8,9,9,9

Original file name:

I.dll

File type:

Dynamic link library (Win64 DLL)

Language:

Language Neutral

Common path:

C:\ProgramData\autofwrp64.dll

File PE Metadata

Compilation timestamp:

5/28/2012 1:52:28 AM

OS version:

5.2

OS bitness:

Win64

Subsystem:

Windows GUI

Linker version:

9.0

Entry address:

0x14B8C

Entry point:

48, 83, EC, 28, B8, 01, 00, 00, 00, 3B, D0, 75, 12, 48, 89, 0D, 28, 1D, 00, 00, E8, A3, EA, FF, FF, 8B, 05, 75, 14, 00, 00, 48, 83, C4, 28, C3, 48, 8B, C4, 53, 48, 83, EC, 60, 48, 8D, 15, 39, CA, FE, FF, 48, 8D, 48, C8, 33, DB, 89, 58, 20, FF, 15, 52, C4, FE, FF, 48, 8D, 4C, 24, 20, C7, 84, 24, 88, 00, 00, 00, F3, 44, 28, 67, FF, 15, 74, C4, FE, FF, 66, 39, 5C, 24, 22, 77, 29, B8, 7D, F8, 00, 00, 66, 39, 44, 24, 28, 72, 1D, 48, 8B, 0D, 2A, 14, 00, 00, 4C, 8D, 84, 24, 88, 00, 00, 00, 45, 33, C9, BA, F5, 03... 
[+]

Entropy:

6.3884

Code size:

83.5 KB (85,504 bytes)

Remove autofwrp64.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.