home

slopster.dll

The library slopster.dll has been detected as malware by 12 anti-virus scanners. The file has been seen being downloaded from download1487.mediafire.com and multiple other hosts.
MD5:
00e42b9d26e380dc0c8c21e766e8f823

SHA-1:
2324f91359856c13bce5f7d064aacb974ec6f33b

SHA-256:
9dd9b618c44aea336af626f49d883420593ce65c47d59ada877eee20c1e49e98

Scanner detections:
12 / 68

Status:
Malware

Analysis date:
11/27/2024 4:37:23 AM UTC  (today)

Scan engine
Detection
Engine version

AegisLab AV Signature
Troj.Black.Gen2!c
2.1.4+

Avira AntiVirus
TR/Black.Gen2
8.3.3.4

avast!
Win32:Malware-gen
2014.9-160610

AVG
Win32/Blacked
2017.0.2716

Bkav FE
HW32.Packed
1.3.0.8042

ESET NOD32
Win32/Packed.VMProtect.ABO (variant)
10.13627

Fortinet FortiGate
PossibleThreat
6/10/2016

IKARUS anti.virus
Trojan.Win32.VMProtect
t3scan.2.0.9.0

K7 AntiVirus
Trojan
13.227.19883

McAfee
Artemis!00E42B9D26E3
5600.6372

Qihoo 360 Security
HEUR/QVM36.0.Malware.Gen
1.0.0.1120

Sophos
Mal/VMProtBad-A
4.98

File size:
600 KB (614,400 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\downloads\slopster.dll

File PE Metadata
Compilation timestamp:
6/9/2016 1:16:49 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
12288:cqJtZ/F9cJ9ZsqCGhpMc9rXiASrNWdQaCIVLOTc9RjpLoAVf:cKX/F9cJUqtMMnbdEIZtLoW

Entry address:
0x24A6E9

Entry point:
E8, 1C, 16, 00, 00, 4D, 41, 5B, 6D, 67, 61, DE, 75, 1E, 7A, 64, 6F, 6E, B5, FF, 89, 68, 17, E4, 61, 98, D7, E5, D3, ED, 42, 69, C2, 59, A5, 06, 39, D0, 28, 13, 65, 8D, 53, 70, E3, 57, DA, 28, 80, 57, C6, 53, 48, C9, 4F, 9B, A0, 18, 70, 67, DE, 0B, 64, 68, 10, A0, 18, B4, C4, 17, 22, F1, 8F, EB, 18, B6, 04, CC, 4A, A8, 44, B8, E1, 61, A2, 00, 4D, 71, EF, 51, A8, 6B, 70, CE, 03, 00, 85, 8A, 78, C0, B6, 3D, D1, 2E, 5B, 43, 1B, EF, 5A, 78, C5, 33, 75, 09, A4, AB, 54, AE, 15, F9, 3E, E2, 05, 74, BA, 47, 02, CD...
 
[+]

Entropy:
7.9284  (probably packed)

Code size:
868.5 KB (889,344 bytes)

The file slopster.dll has been seen being distributed by the following 2 URLs.

http://download1487.mediafire.com/20189s3f7xyg/.../SLOPSTER(2).dll

http://download980.mediafire.com/fsvhrc4efuwg/.../SLOPSTER(2).dll

Remove slopster.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.