home

GbpDist.DLL

GbpDist Module

Banco do Brasil S.A.

Publisher:
Banco do Brasil S.A.  (signed and verified)

Product:
GbpDist Module

Version:
2,1,3,1

MD5:
e3ff1193662cb095b7aa789259d1a09c

SHA-1:
f37401adbdd773a60a14cff119709f555f5b74bf

Scanner detections:
5 / 68

Status:
Clean  (5 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
12/29/2024 3:06:02 AM UTC  (today)

Scan engine
Detection
Engine version

Bitdefender
Trojan.Generic.2049960
1.0.20.5

G Data
Trojan.Generic.2049960
16.1.19

Quick Heal
TrojanSpy.Mafod.rts
1.16.10.00

Sophos
Sus/Drop-B
4.60

Vba32 AntiVirus
suspected of Malware-Cryptor.Win32.General
3.12.24.3

File size:
63.8 KB (65,352 bytes)

Product version:
2,1,3,1

Copyright:
Copyright 2004

Original file name:
GbpDist.DLL

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\windows\downloaded Program Files\gbpdist.dll

Digital Signature
Signed by:
Banco do Brasil S.A.

Authority:
VeriSign, Inc.

Valid from:
9/13/2006 5:00:00 PM

Valid to:
9/26/2007 4:59:59 PM

Subject:
CN=Banco do Brasil S.A., OU=UF Tecnologia, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Banco do Brasil S.A., L=Brasilia, S=Distrito federal, C=BR

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
47F4EDDC7733CAB2C05F42891B63A1F9

File PE Metadata
Compilation timestamp:
7/27/2007 1:09:41 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
1536:JToA2hawCAls9TUzPQP8IDtzvTz49K7wrR2qP3JllbSE244:JTn2JCfWzPvwRvAw7sRP/JllbSj

Entry address:
0x29EEF

Entry point:
B8, D8, AA, 02, 10, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, 00, 00, 08, E1, 48, 01, E9, 30, DD, 07, 0A, 55, 8B, EC, 72, 83, 75, 34, 3C, 45, 08, 39, 48, 87, 33, D2, 42, 53, F1, 58, 0C, 56, F8, F2, D3, 67, E6, 1E, 04, BE, 0F, 57, CF, FA, 40, E7, 89, 45, D4, 03, 38, C8, B8, 74, DF, 58, 07, E0, 4E, 4F, E3, 55, E8, 78, 06, 81, E4, 03, DC, 1B, 60, 05, 36, 87, E9, 5D, EC, F4, 75, D0, EC, 7D, 63, CC, 26, F4, 88, 9B, 0B, 1D, 0C, F8, 74...
 
[+]

Entropy:
7.8477

Packer / compiler:
PECompact v2

ActiveX Install
Name:
{DB6BF2CD-4F59-4F1C-AA9C-D08C0B61A931}


Scan GbpDist.DLL - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.