home

lbnjct2.dll

Passion Fruit Tech

The module lbnjct2.dll by Passion Fruit Tech has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Passion Fruit Tech  (signed and verified)

MD5:
487990290b7c6ba79cc63dff6340d186

SHA-1:
e6400b6731836e727425df7ac5ed3ed3bf25b965

SHA-256:
b009ba9336a343b9d1d8192edb296e57839a55308e7ffece8b943924322b9c79

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/27/2024 1:08:12 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Bitcocktail (M)
16.8.2.6

File size:
296.8 KB (303,952 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\v-bates\lbnjct2.dll

Digital Signature
Signed by:
Passion Fruit Tech

Authority:
COMODO CA Limited

Valid from:
7/20/2014 8:00:00 PM

Valid to:
7/21/2015 7:59:59 PM

Subject:
CN=Passion Fruit Tech, O=Passion Fruit Tech, STREET=Rakefet, L=Hod Hasharon, S=Israel, PostalCode=4520634, C=IL

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
3505FC58261F9FA827A43371A3AAEC54

File PE Metadata
Compilation timestamp:
8/27/2014 6:22:01 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
6144:hwr1NX5xoI/VzskVuC1C3UkSWM3qvzyPMywdNDEN9K:WdToI/VAkscLcIqvzQedNw0

Entry address:
0x19A35

Entry point:
4E, DF, F5, 4C, 4C, DA, FF, 4C, 4C, DA, FF, 4C, 4C, DA, FF, 4C, 4C, DA, FF, 47, 47, CC, D6, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 19, 19, 48, 12, 4E, 4E, DF, F8, 4C, 4C, DA, FF, 4C, 4C, DA, FF, 4C, 4C, DA, FF, 4C, 4D, DD, FF, 66, 28, 65, FF, 69, 24, 56, FF, 69, 24, 56, FF, 69, 24, 56, FF, 69, 24, 56, FF, 6B, 25, 58, FB, 19, 08, 15, 16, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.7956

Code size:
185.5 KB (189,952 bytes)

Remove lbnjct2.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.