home

skidrow.dll

MD5:
78d957465fb38b03656d2da85a93ea24

SHA-1:
fdc88f703fef7858b4660ae49585df1b94eaec9b

SHA-256:
3b0ebc112daa98811d3c0c8f39bd922b5b6df090869ddfb949d367cd579708fa

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/5/2024 7:06:14 AM UTC  (today)

Scan engine
Detection
Engine version

Norman
Suspicious_Gen4.CLWOP
11.20131224

VIPRE Antivirus
Trojan.Win32.Generic
26010

File size:
3 KB (3,072 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\skidrow.dll

File PE Metadata
Compilation timestamp:
8/22/2011 11:00:51 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
5.12

CTPH (ssdeep):
12:e9GSG0GC9CxQlqvSGPj6nkGUivcDBhjlMkBuQ:e9GSvZGPj6WiQf

Entry address:
0x1000

Entry point:
55, 8B, EC, 83, 7D, 0C, 01, 75, 05, B8, 01, 00, 00, 00, C9, C2, 0C, 00, 50, 51, 56, 57, 52, 68, 10, 30, 00, 10, 68, 04, 01, 00, 00, E8, 26, 00, 00, 00, 8D, 15, 10, 30, 00, 10, 03, D0, FC, 8D, 35, 00, 30, 00, 10, 8B, FA, B9, 07, 00, 00, 00, F3, A4, 58, 59, 5E, 5F, 5A, 8D, 05, 10, 30, 00, 10, EB, 00, C3, FF, 25, 00, 20, 00, 10, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
1.2533

Developed / compiled with:
Microsoft Visual C++

Code size:
512 Bytes (512 bytes)

The file skidrow.dll has been discovered within the following programs.

Assassin's Creed Revelations  by Ubisoft
Assassin's Creed: Revelations is a 2011 action-adventure stealth video game developed and published by Ubisoft.
www.ubi.com
2% remove it
Driver San Francisco  by Ubisoft
Driver: San Francisco is a sandbox-style action-adventure driving video game developed by Ubisoft Reflections and published by Ubisoft. A new feature is Shift, which allows Tanner to shift from a car into another car and continue the mission.
driver-thegame.ubi.com/driver-san-francisco/en-us/home/index.aspx
7% remove it
Driver San Francisco Farsi version Driver San Francisco Farsi  by AsreBazi, Inc.
Driver San Francisco is a PC video game distributed by AsreBazi, an Iranian video game portal, with permission from the National Foundation for Computer Games. The game contains various Farsi translations.
www.asrebazi.com
About 1% of users remove it
Might & Magic Heroes VI  by Ubisoft
Might & Magic Heroes VI is a turn-based strategy video game developed by Black Hole Entertainment and published by Ubisoft. It is the sixth installment in the Heroes of Might and Magic series.
10% remove it
Tom Clancys Ghost Recon Future Soldier  by Tom Clancy's
About 9% of users remove it
Tom Clancy's Ghost Recon Future Soldier  by Ubisoft
Tom Clancy's Ghost Recon: Future Soldier is a third-person shooter video game published by Ubisoft. The game has a futuristic take on the Ghost Recon series. The campaign has settings such as Nigeria, Pakistan, Russia and Norway.
3% remove it
Ubisoft Game Launcher  by Ubisoft
The Ubisoft Game Launcher used to run UBISOFT games.
22% remove it
Uplay  by Ubisoft
Uplay is a digital distribution, digital rights management, multiplayer and communications service created by Ubisoft to provide an experience similar to the achievements/trophies offered by various other game companies.
4% remove it
 
Powered by Should I Remove It?

The file skidrow.dll has been seen being distributed by the following 7 URLs.

http://rgho.st/download/37106779/.../skidrow.dll

http://gluon.rghost.ru/download/37106779/.../a7961d90711d1f44daaefbf029ee47f8c3a37fe4/skidrow.dll

http://www.fayloobmennik.net/files/.../122281630.html?check=669063d67a002225a841ac188d5c5952&file=5605980

http://s10208.chomikuj.pl/File.aspx?e=t-Rk8i-wGCYFrSc1ZYM3unJ3wmDIup5mTyo0--QZAkcY1fbbhm0RA8hlQScMEJ5l85qycegBbpZ3LW3crusWvjERqFjHKtB27b8ilpyZeNsilo8g5gqtgtnb8bCf4Vfyn-a6uq-5bcF8q-z1UfwdkQ&pv=2

http://www.fayloobmennik.net/files/.../54708670.html?check=bb896b99bf03d5e2b9f17def6a557c83&file=5605980

http://files03.arabsh.com/file/1457298715/.../skidrow.dll

http://s10208.chomikuj.pl/File.aspx?e=t-Rk8i-wGCYFrSc1ZYM3ukbSOms-9qS3yQokwMRH76wm5JcXEl63YiFB6ml05Qm07ib3rm7g2_mxwk6xupZVoiuPLF1fhjOt0X_p_fzc4rPefG22AETBhcXYUHpsL47Fv2joWFmEdYiNZxSO98fc-A&pv=2

Scan skidrow.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.