home

capmon.dll

MD5:
371dd9aa6c03c86f1b33a1efdca65a24

SHA-1:
2efdc11d2f93425e6d6c4adda728f815b8dd7cb2

SHA-256:
3473db3f1752808f87622f10fa3a294ed9be9cdf8ebd95ba6bae679350f31c29

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 4:27:01 AM UTC  (today)

File size:
132 KB (135,200 bytes)

File type:
Dynamic link library (Win64 DLL)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\capmon.dll

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
1536:FfZmc5tz44fahB1sO1/fCn0RboeePpypSMUv32w+P3GaJQXFioIfFv7nt0HNpq:vl5tx01sOdfCn0Rbjexi56SfF7Wc

Entry point:
11, D3, EE, 0B, AE, 06, 67, DD, FD, 9C, E0, CA, 5B, 17, AD, 2F, A4, C4, 36, 0C, EA, BD, 7D, 88, 39, A4, 39, 38, D8, C1, 79, 85, A5, 58, 83, 4A, 52, 12, 3E, 2D, E3, 17, 6C, 17, CB, CC, F2, B6, C3, 6C, 32, 0E, 2B, A0, 2E, 5A, F1, 40, 06, 3A, 3D, 98, BE, EA, DA, A5, FC, DE, 52, 58, D6, 7A, 40, A1, 5B, 4C, 79, 63, 6D, 3B, 76, AE, A0, E0, 7A, 54, F2, 4D, BF, D9, BD, BF, 3E, 8A, 9E, 19, BE, 29, 6F, C4, 68, 88, 75, 49, 43, C5, 4D, 93, 73, DE, BD, 7F, A1, BD, BC, 71, 5B, D5, CD, B7, 6A, C2, 02, 8D, 6C, E7, 78, 42...
 
[+]

Entropy:
7.9988  (probably packed)

The file capmon.dll has been seen being distributed by the following 3 URLs.

https://form.shinhan.com/Rexpert/plugin/bcqre/.../CapMon.dll

http://61.251.31.99/bcqre/.../CapMon.dll

http://cert.ust.ac.kr/RexServer30/plugin/bcqre/.../CapMon.dll

Scan capmon.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.