» christiankcm.dll
Overview
Analysis
File Details
Downloads (1)

christiankcm.dll

The library christiankcm.dll has been detected as malware by 4 anti-virus scanners. The file has been seen being downloaded from fs04n5.sendspace.com.

File name:

christiankcm.dll

MD5:

4d2236a26183790ee4b4007af0d311fe

SHA-1:

40ea23f53222440ead79d1c6c72af234de908d54

SHA-256:

f3c8ffe4b37120cd6845c2decdf9a003e2839784152b8f6e7176e45423dbabea

Scanner detections:

4 / 68

Status:

Malware

Analysis date:

11/24/2024 4:24:32 PM UTC (today)

Scan engine

Detection

Engine version

Emsisoft Anti-Malware

Gen:Variant.Graftor.253778

11.5.0.6191

ESET NOD32

Win32/GameHack.AHD potentially unsafe application

8.0.319.0

F-Secure

Variant.Razy.52838

5.15.96

Norman

Gen:Variant.Razy.52838

22.05.2016 07:18:28

File size:

482 KB (493,568 bytes)

File type:

Dynamic link library (Win32 DLL)

Common path:

C:\users\{user}\downloads\christiankcm.dll

File PE Metadata

Compilation timestamp:

4/15/2016 10:56:38 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

6144:Bc/nccLApXFUYk/PM6O/Bx6SROe3F66QeeaQeeQQeesQee2DQeehQeexTwuEe66s:+0c0VFUYk/PM6YBwAddwrNwT

Entry address:

0x538AA

Entry point:

8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, AA, 05, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, CC, FE, FF, FF, 59, 5D, C2, 0C, 00, CC, FF, 25, 24, 52, 05, 10, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, 00, 2D, 07, 10, 33, C5, 50, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00, 00, C3, 8B, 4D, F4, 64, 89, 0D, 00, 00, 00, 00, 59, 5F, 5F, 5E, 5B, 8B, E5, 5D, 51, C3, CC, CC, CC, CC, CC, FF, 25, 20, 52, 05, 10, FF, 25, 1C, 52... 
[+]

Entropy:

6.4911

Code size:

333 KB (340,992 bytes)

The file christiankcm.dll has been seen being distributed by the following URL.

https://fs04n5.sendspace.com/dl/88d4046115aa56874acba37690bf6f95/57123d0b587b68c2/.../ChristianKCM.dll

Remove christiankcm.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.