home

i4m.dll

深圳市为爱普信息技术有限公司

The library i4m.dll has been detected as malware by 9 anti-virus scanners.
Publisher:
深圳市为爱普信息技术有限公司  (signed and verified)

MD5:
3a01d64520c689e376adc0cefef7aedd

SHA-1:
bb8f1be51297b390460e41ad0f6c8a1d5f0c499b

SHA-256:
02cf6971671361326616d5db78c5b95ac78f746fa81a827dcc636a4ac84b8c6d

Scanner detections:
9 / 68

Status:
Malware

Analysis date:
11/6/2024 4:57:32 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/AceDeceiver.hfkf
8.3.3.4

AVG
Generic
2018.0.2482

ESET NOD32
Win32/AceDeceiver (variant)
11.13552

Fortinet FortiGate
W32/AceDeceiver.A!tr
1/31/2017

G Data
Win32.Trojan.Agent.THSFXI
17.1.25

Kaspersky
HEUR:Trojan-Dropper.Win32.AceDeceiver
14.0.0.-1095

McAfee
Artemis!3A01D64520C6
5600.6138

Panda Antivirus
Generic Suspicious
17.01.31.12

Sophos
Mal/Generic-S
4.98

File size:
340.9 KB (349,032 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\i4tools\i4m.dll

Digital Signature
Signed by:
深圳市为爱普信息技术有限公司

Authority:
GlobalSign nv-sa

Valid from:
6/20/2014 1:09:33 AM

Valid to:
6/20/2016 1:09:33 AM

Subject:
CN=深圳市为爱普信息技术有限公司, OU=IT Dept., O=深圳市为爱普信息技术有限公司, L=Shenzhen, S=Guangdong, C=CN

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
112135CF84C96DF6BD3F7769B2D3E242EE22

File PE Metadata
Compilation timestamp:
1/13/2015 6:49:39 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0x34DE1

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 49, 05, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, CC, FE, FF, FF, 59, 5D, C2, 0C, 00, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 53, 57, 33, FF, 8B, 44, 24, 10, 0B, C0, 7D, 14, 47, 8B, 54, 24, 0C, F7, D8, F7, DA, 83, D8, 00, 89, 44, 24, 10, 89, 54, 24, 0C, 8B, 44, 24, 18, 0B, C0, 7D, 13, 8B, 54, 24, 14, F7, D8, F7, DA, 83, D8, 00, 89, 44, 24, 18, 89, 54, 24, 14, 0B, C0, 75, 1B, 8B, 4C, 24, 14, 8B, 44, 24, 10, 33, D2, F7, F1, 8B, 44, 24, 0C, F7, F1...
 
[+]

Entropy:
6.8330

Code size:
214 KB (219,136 bytes)

Remove i4m.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.