home

ids.dll

Lyto Datarindo Fortuna

Publisher:
Lyto Datarindo Fortuna  (signed and verified)

Description:
Idol street plugin D

Version:
1.0.1.1

MD5:
3cdc74fb33fba7697ff6ed54a35648cf

SHA-1:
4d30884986b6eca84d077afb85ea88ed6224a09b

SHA-256:
1c6c329c115c6f5e9e132b476b1a89fd8c3eedf4fcf073b6feb97aa06eaf2ab6

Scanner detections:
5 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/19/2025 4:56:12 AM UTC  (today)

Scan engine
Detection
Engine version

Comodo Security
Heur.Packed.Unknown
23963

Microsoft Security Essentials
VirTool:Win32/Obfuscator.XZ
1.1.12400.0

Rising Antivirus
PE:Malware.Generic/QRS!1.9E2D [F]
23.00.65.16524

Sophos
Mal/VMProtBad-A
4.98

VIPRE Antivirus
Trojan.Win32.Generic
46460

File size:
118.3 KB (121,184 bytes)

Product version:
1.0.1.1

Copyright:
Lyto Datarindo Fortuna

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\gmsc15mei2012\gmsc\ids.dll

Digital Signature
Signed by:
Lyto Datarindo Fortuna

Authority:
VeriSign, Inc.

Valid from:
2/6/2011 7:00:00 AM

Valid to:
3/16/2014 6:59:59 AM

Subject:
CN=Lyto Datarindo Fortuna, OU=System, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Lyto Datarindo Fortuna, L=Jakarta, S=Jakarta, C=ID

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6F91FA63FCEA386679A316C9BB2306AD

File PE Metadata
Compilation timestamp:
6/20/1992 5:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
3072:GaLJw3MQD/tTbQCu5l7mIfhN38LYZtznkemif1:/u8QD/VQCuBhN38L4tzeit

Entry address:
0x39BD5

Entry point:
E9, 0E, CB, FF, FF, 89, F4, 57, 8D, 64, 24, 04, E9, 88, C8, FF, FF, 47, 0E, E5, C1, E2, 28, AE, 8E, 3D, 91, 19, 7E, A1, 01, ED, 66, 6E, BC, 28, 87, 53, 29, 8A, 4D, 3A, BE, 2D, 8F, F9, 88, E6, DD, 28, DA, D4, 69, DE, 6E, 35, B6, 1A, E6, 2D, 7D, 5E, 51, 15, 50, 95, 28, 5C, 71, DD, 7A, 0E, D9, 3C, 55, 28, 28, AE, C5, A2, C6, F7, 9F, 49, 27, 96, AE, 29, 92, BE, 3D, 3A, 3E, 1E, 16, E6, 9D, 65, 7A, 43, F0, D4, 1D, FB, A3, 13, E9, 8E, 3F, 1F, 99, 04, 31, 92, 68, E8, D1, 5E, 76, B8, 0A, 0C, A8, 7B, 36, C1, A2, 3D...
 
[+]

Packer / compiler:
tElock 0.99 - 1.0 private

Code size:
250 KB (256,000 bytes)

Scan ids.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.