» opengl32.dll
Overview
Analysis
File Details
Downloads (2)

opengl32.dll

The module opengl32.dll has been detected as a potentially unwanted program by 16 anti-malware scanners. The file has been seen being downloaded from s10006.chomikuj.pl and multiple other hosts.

File name:

opengl32.dll

MD5:

7052a9f82aa52f1a2e238185bab7e019

SHA-1:

4b4f69060faa54fd1a285d67aa64a3f03849348a

SHA-256:

cdffd2ddc20ec43296c371f116fd061375fc28e5ea9707d764c7268ea14c0158

Scanner detections:

16 / 68

Status:

Potentially unwanted

Analysis date:

11/15/2024 4:29:25 PM UTC (today)

Scan engine

Detection

Engine version

Agnitum Outpost

Trojan.MalwareF

7.1.1

avast!

Win32:PUP-gen [PUP]

2014.9-140211

AVG

Agent2

2015.0.3567

Baidu Antivirus

Trojan.Win32.Agent

4.0.3.14211

Bkav FE

W32.Clod704.Trojan

1.3.0.4923

Clam AntiVirus

Trojan.Spy-87328

0.98/18155

Comodo Security

TrojWare.Win32.Trojan.Agent.~LPZ

17633

F-Prot

W32/MalwareF.AOPS

v6.4.7.1.166

IKARUS anti.virus

Trojan.Win32.Agent

t3scan.2.2.29

K7 AntiVirus

Riskware

13.175.10881

NANO AntiVirus

Trojan.Win32.Agent2.kgxse

0.28.0.57029

Norman

Suspicious_Gen2.TWEDC

11.20140211

nProtect

Trojan/W32.Agent.77824.VT

14.01.17.02

Rising Antivirus

PE:Trojan.Win32.Generic.1232D5C6!305321414

23.00.65.14209

VIPRE Antivirus

Trojan.Win32.Generic

25540

XVirus List

Win.Detected

2.3.31

File size:

76 KB (77,824 bytes)

File type:

Dynamic link library (Win32 DLL)

Common path:

C:\windows\opengl32.dll

File PE Metadata

Compilation timestamp:

8/7/2006 11:15:50 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

1536:saa2KBdlQLv3Pj76OIbUe91y5BnJAGVbY/VaivTiTijaY6N2:T4M359JAGVM/Va6OWwN

Entry address:

0x3800

Entry point:

E8, 2B, DA, FF, FF, 8B, 44, 24, 08, 83, E8, 00, 74, 59, 48, 0F, 85, 93, 00, 00, 00, 68, F0, 20, 00, 10, 68, 2C, E1, 00, 10, 68, 1C, E1, 00, 10, E8, E7, 58, 00, 00, 50, E8, 81, 52, 00, 00, 68, 70, 21, 00, 10, 68, 04, E1, 00, 10, 68, 1C, E1, 00, 10, A3, C4, FD, 00, 10, E8, C8, 58, 00, 00, 50, E8, 62, 52, 00, 00, A3, C8, FD, 00, 10, A1, A0, 03, 01, 10, 50, FF, 15, 1C, A0, 00, 10, E8, EC, 23, 00, 00, C2, 0C, 00, A1, A0, 03, 01, 10, 85, C0, 74, 38, 8B, 0D, C4, FD, 00, 10, 68, F0, 20, 00, 10, 51, E8, DF, 4F, 00... 
[+]

Code size:

36 KB (36,864 bytes)

The file opengl32.dll has been seen being distributed by the following 2 URLs.

http://s10006.chomikuj.pl/File.aspx?e=lMW7xaNbYSgh_QLY8feiRX3_snQ3CDXZ0CuI36Fzd89a9eu5JxPgG-b6_1gDrlcHLl3zgkTYkdEKkL1aX_nF5raWs3WDXC9pgOSSOlJiIEjDekIo5uxlFAW-16DZePIbEmqYilG5z00-ue3yf-v8ew&pv=2

http://s10006.chomikuj.pl/File.aspx?e=lMW7xaNbYSgh_QLY8feiRa3MP7b6e2bLZe4Eg_FiFOXaie6dzWXRL6rxCDtR9KUXG0bO0PXx40uJJL857Rjw6MHPyn213IatSAf925EPZIJ4legq6Lgt48m2Pcn-xdVCP8uKyudAW0U6txS6fvQEGw&pv=2

Remove opengl32.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.