home

GbpDist.DLL

GbpDist Module

Banco do Brasil S.A.

Publisher:
Banco do Brasil S.A.  (signed and verified)

Product:
GbpDist Module

Version:
2,1,15,0

MD5:
aff2684ffc0fa91ab57ae4483feb3498

SHA-1:
dc779f0ffd955ac5684fa3997a5c272017cdbee2

SHA-256:
5fbb1e40434a616e628bbee676589acb0bcd7861da8bba8011a3e866d079613f

Scanner detections:
14 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/22/2025 7:41:33 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.Generic.3702150
159

Agnitum Outpost
Trojan.PWS.Banbra
7.1.1

AhnLab V3 Security
Win-Trojan/Banbra.66048
2014.11.04

Bitdefender
Trojan.Generic.3702150
1.0.20.1210

Emsisoft Anti-Malware
Trojan.Generic.3702150
8.16.08.29.06

G Data
Trojan.Generic.3702150
16.8.24

MicroWorld eScan
Trojan.Generic.3702150
17.0.0.726

NANO AntiVirus
Trojan.Win32.Banbra.cyrfjv
0.28.6.62995

nProtect
Trojan.Generic.3702150
14.11.03.01

Rising Antivirus
PE:Trojan.Spy.Win32.Banker.zsk!1075186772
23.00.65.16827

Total Defense
Win32/Bancos.YVL
37.0.11261

Vba32 AntiVirus
TrojanBanker.Banbra
3.12.26.3

ViRobot
Trojan.Win32.Banbra.66048
2011.4.7.4223

Zillya! Antivirus
Trojan.Banbra.Win32.865
2.0.0.1975

File size:
69.8 KB (71,496 bytes)

Product version:
2,1,15,0

Copyright:
Copyright © 2008

Original file name:
GbpDist.DLL

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\windows\downloaded Program Files\gbpdist.dll

Digital Signature
Signed by:
Banco do Brasil S.A.

Authority:
VeriSign, Inc.

Valid from:
9/24/2007 9:00:00 PM

Valid to:
10/3/2008 8:59:59 PM

Subject:
CN=Banco do Brasil S.A., OU=UF Tecnologia, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Banco do Brasil S.A., L=Brasilia, S=Distrito federal, C=BR

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
7D4258BAAEBC77E462D087CAAD3D7865

Registration
CLSID:
{DB6BF2CD-4F59-4F1C-AA9C-D08C0B61A931}

ProgID:
GbpDist.GbpDistObj.1

COM registered:
Yes

File PE Metadata
Compilation timestamp:
5/29/2008 9:44:46 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
1536:w83+QYpIceB+ZbFnMHUG0ug1mxnJzChPyEEeaFcejHRx3X:r7cZb1kUG0uampJGh6wQBj7X

Entry address:
0x2FEFF

Entry point:
B8, 04, 0B, 03, 10, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, 00, 00, 08, E1, 48, 01, E9, 30, DD, 07, 0A, 55, 8B, EC, 72, 83, 75, 34, 3C, 45, 08, 39, 48, 87, 33, D2, 42, 53, F1, 58, 0C, 56, F8, F2, D3, 67, E6, 1E, 04, BE, 0F, 57, CF, FA, 40, E7, 89, 45, D4, 03, 38, C8, B8, 74, DF, 58, 07, E0, 4E, 4F, E3, 55, E8, 78, 06, 81, E4, 03, DC, 1B, 60, 05, 36, 87, E9, 5D, EC, F4, 75, D0, EC, 7D, 63, CC, 26, F4, 88, 9B, 0B, 1D, 0C, F8, 74...
 
[+]

Packer / compiler:
PECompact v2

Code size:
104 KB (106,496 bytes)

ActiveX Install
Name:
{DB6BF2CD-4F59-4F1C-AA9C-D08C0B61A931}


Scan GbpDist.DLL - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.