home

ca2.dll

MD5:
18b8e9de0e30c9e1f7291d1546a017a2

SHA-1:
fd98d1d7c71affe5304ae91539dc334273d7f0ac

SHA-256:
b61d5cf80441d2da3d9d09d82fd7251416767a8e9b0600f67bce9602d8e82d6b

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/16/2024 12:28:51 AM UTC  (today)

Scan engine
Detection
Engine version

AVG
Win32/Blacked
2015.0.4477

File size:
152.5 KB (156,160 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\inetcache\ie\{random}\ca2.dll

File PE Metadata
Compilation timestamp:
11/6/2015 1:00:41 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
3072:r8gC3835NI+FUd4iCgaevV5smOll/A3TIdhQncKKurIdxNKJd+wf:ic3HFUCiBvV5smil/AmOncK1MdxNKXf

Entry address:
0x1DCF8

Entry point:
60, 68, FF, 73, B1, D6, C7, 44, 24, 20, BE, 2C, 56, 44, FF, 74, 24, 08, 55, C7, 44, 24, 24, 95, A1, 3A, 7C, C6, 44, 24, 20, AA, 68, CF, F3, 2B, 39, 8D, 64, 24, 28, E9, 1B, 48, 02, 00, E9, 8D, 63, 00, 00, 9C, C6, 44, 24, 08, AB, 8D, 64, 24, 10, 0F, 83, 57, 6B, 00, 00, 0F, B3, DF, 66, 0F, A5, C9, 66, C1, F7, 0D, F5, 89, C3, 0F, BA, E5, 16, 4F, 89, C7, 66, C1, E9, 0B, B9, 04, 01, 00, 00, 9C, 66, 39, C5, 28, C0, E9, 48, 99, 01, 00, 3C, 09, E8, 93, 61, 00, 00, 54, 88, 14, 24, 85, C0, 34, 00, 66, 89, 24, 24, 9C...
 
[+]

Code size:
38 KB (38,912 bytes)

The file ca2.dll has been seen being distributed by the following URL.

http://engenhariatm.com/loader/.../ca2.dll?n4

Scan ca2.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.