datamngr.dll

MusicLab LLC

The module datamngr.dll by MusicLab has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. Additionally, the file is typically installed by a number of programs including Wincore MediaBar by Musiclab, LLC and MediaBar by Musiclab, LLC, both potentially unwanted software.
Publisher:
MusicLab LLC  (signed and verified)

MD5:
5fb4892c47ae8498ead62c775eff7cd2

SHA-1:
da4f466992b07015de5eaf3b85b34b73952aa585

SHA-256:
a2798164d41eac9d75781bd3c5350fd4676b4015fe11ac29b16888fe12b05ac7

Scanner detections:
1 / 68

Status:
Potentially unwanted

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
12/25/2024 1:30:57 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.MusicLab (M)
15.11.3.0

File size:
1003.4 KB (1,027,504 bytes)

File type:
Dynamic link library (Win64 DLL)

Language:
English (United States)

Common path:
C:\Program Files\bearshare applications\mediabar\datamngr\x64\datamngr.dll

Digital Signature
Signed by:

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
5/27/2010 8:00:00 PM

Valid to:
5/28/2011 7:59:59 PM

Subject:
CN=MusicLab LLC, OU=SECURE APPLICATION DEVELOPMENT, O=MusicLab LLC, L=New York, S=New York, C=US

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
420322A094ED9B312AA248555D789C37

File PE Metadata
Compilation timestamp:
1/6/2011 9:05:51 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:bIZBJJb+nT/bz7hHczp+v29LE2tIiRQmdNtOaNfkDUAS5a5HYPN4pM:bkYnT/bnLv29LE8HRQm3tOTHS3

Entry address:
0x9713C

Entry point:
48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 20, 49, 8B, F8, 8B, DA, 48, 8B, F1, 83, FA, 01, 75, 05, E8, 5F, 80, 00, 00, 4C, 8B, C7, 8B, D3, 48, 8B, CE, 48, 8B, 5C, 24, 30, 48, 8B, 74, 24, 38, 48, 83, C4, 20, 5F, E9, AB, FE, FF, FF, CC, CC, CC, 48, 8B, C4, 48, 89, 58, 08, 48, 89, 68, 18, 48, 89, 70, 20, 48, 89, 50, 10, 57, 41, 54, 41, 55, 41, 56, 41, 57, 48, 83, EC, 40, 4D, 8B, 79, 08, 4D, 8B, 21, 49, 8B, 71, 38, 4D, 2B, E7, F6, 41, 04, 66, 4D, 8B, F1, 48, 8B, EA, 4C, 8B, E9, 0F, 85, DC, 00, 00...
 
[+]

Entropy:
5.9619

Code size:
740.5 KB (758,272 bytes)

App Init DLL
Name:
datamngr.dll


The file datamngr.dll has been discovered within the following programs.

MediaBar  by Musiclab, LLC
Musiclab MediaBar (Visicom Media Inc) is an ad-supported (users may see additional banner, search, pop-up, pop-under, interstitial and in-text link advertisements) cross web browser plugin for Internet Explorer (BHO) and Firefox/Chrome (plugin) and distributed through various monitization platforms during installation.
www.bearshare.com
68% remove it
Wincore MediaBar  by Musiclab, LLC
Wincore Mediabar is a type of browser hijacker instaled in Google Chrome, Internet Explorer, and Mozilla Firefox browsers and modifies DNS settings in MS Windows hosts file in order to redirect your legitimate search traffic to associated 'parnter' advertising sites.
82% remove it
 
Powered by Should I Remove It?

Remove datamngr.dll - Powered by Reason Core Security