home

cgi.dll

MD5:
c2e2312bf20c9585818b97edcdc199c6

SHA-1:
735d268461f43fe4cf257a5736337b381255bdb0

SHA-256:
3a64c6596ca5034bcd140fe02e2ba0cf5751207c7c208b4dba718eb0901aefa9

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/2/2024 5:21:47 PM UTC  (today)

File size:
33 KB (33,792 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\downloads\cgi.dll

File PE Metadata
Compilation timestamp:
7/17/2016 1:32:33 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
14.0

CTPH (ssdeep):
768:gz6kCk42QdvKZuqSSyXolnPcWZhGiMsO/:fLnVdCZurSuolnPcWZsjsO/

Entry address:
0x4C31

Entry point:
55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 49, 05, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 9E, FE, FF, FF, 83, C4, 0C, 5D, C2, 0C, 00, 55, 8B, EC, 6A, 00, FF, 15, 34, 60, 00, 10, FF, 75, 08, FF, 15, 38, 60, 00, 10, 68, 09, 04, 00, C0, FF, 15, 30, 60, 00, 10, 50, FF, 15, 2C, 60, 00, 10, 5D, C3, 55, 8B, EC, 81, EC, 24, 03, 00, 00, 6A, 17, E8, FC, 0A, 00, 00, 85, C0, 74, 05, 6A, 02, 59, CD, 29, A3, C0, 93, 00, 10, 89, 0D, BC, 93, 00, 10, 89, 15, B8, 93, 00, 10, 89, 1D, B4, 93, 00, 10, 89, 35, B0, 93, 00...
 
[+]

Entropy:
6.1426

Developed / compiled with:
Microsoft Visual C++

Code size:
19 KB (19,456 bytes)

The file cgi.dll has been seen being distributed by the following 9 URLs.

http://download1857.mediafire.com/cksbsperc17g/.../CGI.dll

http://download1857.mediafire.com/i491cxxeo8yg/.../CGI.dll

https://mega.nz/temporary/.../h4QRTBBB

http://download1857.mediafire.com/w5kzhpssp6yg/.../CGI.dll

https://mega.nz/temporary/.../3xB0yB7C

http://download1857.mediafire.com/l1a4z8sq4lug/.../CGI.dll

http://www.filedropper.com/.../filedownload.php?id=cgi_1

http://download1857.mediafire.com/4myl85dnhq2g/.../CGI.dll

http://download1327.mediafire.com/xgqgrv8rnlvg/.../CGI.dll

Scan cgi.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.