home

frename3.far3.x64.dll

Pepak

The module frename3.far3.x64.dll by Pepak has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Pepak  (signed and verified)

Version:
1.0.5685.24182

MD5:
c3cab0dd4796b085db1eb58c8df4ad59

SHA-1:
2a420420afc62052d87f8fe84b19ff3e22a8de12

SHA-256:
670433e52fa6114aa1d5c7cae8763cd022ffa6fc8a85621efcb99c5ab6ab713c

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/26/2024 8:14:35 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Pepak (M)
16.4.5.9

File size:
728.5 KB (745,968 bytes)

Product version:
1.0.5685.24182

File type:
Dynamic link library (Win64 DLL)

Digital Signature
Signed by:
Pepak

Authority:
Pepak (root CA)

Valid from:
3/15/2015 1:47:18 PM

Valid to:
3/15/2016 1:47:17 PM

Subject:
CN=Pepak, E=http://www.pepak.net

Issuer:
CN=Pepak (root CA), E=http://www.pepak.net

Serial number:
3CF3EFFEF1E5EDA545564A0532C0A9B8

File PE Metadata
Compilation timestamp:
7/26/2015 8:42:21 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
6144:3H4XAUDlBP5llrYrEzVgw8ESjdUYd3cQ6AHdiW6Vw5B/W+OBcJ2JH4Iu4idEMUme:3Fml95TErEzVj8n/e/OGVwDWfid2evj+

Entry address:
0x915B0

Entry point:
55, 48, 81, EC, 90, 00, 00, 00, 48, 8B, EC, 48, 89, 4D, 30, 89, 55, 3C, 4C, 89, 45, 40, 90, 48, 8D, 4D, 48, 48, 8D, 15, 76, 75, FF, FF, 4C, 8B, 45, 30, 44, 8B, 4D, 3C, 48, 8B, 45, 40, 48, 89, 44, 24, 20, E8, E8, E1, F7, FF, E8, 93, 87, F7, FF, C7, 85, 8C, 00, 00, 00, 01, 00, 00, 00, EB, 17, 90, 90, E8, C0, 89, F7, FF, 85, C0, 0F, 94, C0, 48, 0F, B6, C0, 89, 85, 8C, 00, 00, 00, 90, 8B, 85, 8C, 00, 00, 00, 48, 8D, A5, 90, 00, 00, 00, 5D, C3, 90, 48, 83, EC, 28, E8, E7, 7D, F7, FF, 48, 83, C4, 28, C3, CC, CC...
 
[+]

Entropy:
5.9142

Code size:
578 KB (591,872 bytes)

Remove frename3.far3.x64.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.