home

custom.dll

MD5:
80308a001cae8c2eb9c54f36302fb0c0

SHA-1:
86c4a4dc9164533e4116477fb2b2012da09d1139

SHA-256:
27a972eebc733ee1581828c18aecf3ffea2fa11737448880115651736a1a546d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/25/2024 9:45:11 PM UTC  (today)

File size:
176 KB (180,224 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\custom.dll

File PE Metadata
Compilation timestamp:
1/10/2016 2:18:33 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
1536:1IrDfF/+97rYnm2QzbB0atPnVETI0UPDBdJJRa4V2Q/9G6o0zkRup+:ek1smzzbB0aRnPP7D2G9G6o0zKn

Entry address:
0x11030

Entry point:
50, 60, 29, C0, 64, FF, 30, E8, 00, 00, 00, 00, 5D, 83, ED, 3C, 89, E8, 89, A5, 14, 00, 00, 00, 2B, 85, 1C, 00, 00, 00, 89, 85, 1C, 00, 00, 00, 8D, 85, 27, 03, 00, 00, 50, 8B, 00, 85, C0, 0F, 85, C0, 00, 00, 00, 8D, BD, 5B, 03, 00, 00, 8D, B5, 43, 03, 00, 00, E8, DD, 00, 00, 00, 89, 85, 1F, 03, 00, 00, 6A, 40, 68, 00, 10, 00, 00, 8B, 85, 28, 00, 00, 00, 50, 6A, 00, FF, 95, 1F, 03, 00, 00, 85, C0, 75, 0B, 8D, 85, C7, 02, 00, 00, E8, CD, 00, 00, 00, 89, 85, 23, 03, 00, 00, B9, 28, 00, 00, 00, 01, E9, 51, 50...
 
[+]

Packer / compiler:
Protection Plus

Code size:
28 KB (28,672 bytes)

The file custom.dll has been seen being distributed by the following URL.

http://www.realrally.com/rbr/.../custom.dll

Scan custom.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.