» d3d9_cloudian.dll
Overview
Analysis
File Details
Downloads (7)

d3d9_cloudian.dll

File name:

d3d9_cloudian.dll

MD5:

56e33f3659600271e5d907b55dd12a1f

SHA-1:

9f6024b32e64792feb2cec1932c0cd4ae1d5c02b

SHA-256:

2ba54599f4924b2ad8d462bd1190ab28c355db9f1296b87137597636b82f3803

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

11/27/2024 1:28:55 AM UTC (today)

File size:

257 KB (263,168 bytes)

File type:

Dynamic link library (Win32 DLL)

Common path:

C:\users\{user}\downloads\d3d9_cloudian.dll

File PE Metadata

Compilation timestamp:

5/12/2014 5:48:50 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

3072:l/P0GlNap9HeXBYrbUg6OfjgTH+CLZHtK6LoEjWz9XHdzXIeNByvOpsE1lVF1lb:pHNapMBYrt6OfjgT1NK6fjWxXh1yvO

Entry address:

0x615C

Entry point:

8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 48, 04, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, CC, FE, FF, FF, 59, 5D, C2, 0C, 00, CC, FF, 25, 44, 71, 00, 10, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, FF, 25, 40, 71, 00, 10, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, B0, B2, 03, 10, 89, 0D, AC, B2, 03, 10, 89, 15, A8, B2, 03, 10, 89, 1D, A4, B2, 03, 10, 89, 35, A0, B2, 03, 10, 89, 3D, 9C, B2, 03, 10, 66, 8C, 15, C8, B2, 03, 10, 66, 8C, 0D, BC, B2, 03, 10, 66, 8C, 1D, 98, B2, 03, 10, 66, 8C, 05... 
[+]

Entropy:

6.5660

Code size:

24 KB (24,576 bytes)

The file d3d9_cloudian.dll has been seen being distributed by the following 7 URLs.

http://download2165.mediafire.com/b3y9181nbltg/.../hack 2016 ver detras de los muros.dll

http://s2.dosya.tc/en2.php?a=server3/.../hack.dll&b=404832015f71d8b6507e6513e5da2006

http://download1580.mediafire.com/0jdgnur1wjpg/.../hack 2016 ver detras de los muros.dll

https://doc-0o-9k-docs.googleusercontent.com/docs/securesc/b1mbbp9p3ueopf218c5m52l83oapfa2p/uan9mketbu26a0ctjicpiooal1agmt5m/1477915200000/01943198336046320658/.../0B_JIDJ5xM_aBQjZEVUpydUNWcEk?e=download

http://download1368.mediafire.com/qy2w2a663rhg/.../hack 2016 ver detras de los muros.dll

http://download1580.mediafire.com/9ico3wq1l1og/.../hack 2016 ver detras de los muros.dll

http://download1580.mediafire.com/7xqm9izzj9jg/.../hack 2016 ver detras de los muros.dll

Scan d3d9_cloudian.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.