home

superapps.dll

NaSvc Module

联软神州(北京)科技有限公司

The library superapps.dll has been detected as malware by 7 anti-virus scanners.
Publisher:
Legendsoft China (Beijing) Technology Limited  (signed by 联软神州(北京)科技有限公司)

Product:
NaSvc Module

Version:
0, 0, 0, 17

MD5:
8d25790bd46583f8175d3c6a4eabfe60

SHA-1:
d6362132a4ea65f718a2cc5f29072622221b83ed

Scanner detections:
7 / 68

Status:
Malware

Analysis date:
11/26/2024 8:40:24 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Symmi.42512
812

Bitdefender
Gen:Variant.Symmi.42512
1.0.20.1595

Emsisoft Anti-Malware
Gen:Variant.Symmi.42512
8.14.11.15.07

F-Secure
Gen:Variant.Symmi.42512
11.2014-15-11_7

G Data
Gen:Variant.Symmi.42512
14.11.24

IKARUS anti.virus
Win32.SuspectCrc
t3scan.1.6.1.0

MicroWorld eScan
Gen:Variant.Symmi.42512
15.0.0.957

File size:
124.9 KB (127,856 bytes)

Product version:
0, 0, 0, 1

Copyright:
Copyright (C) 2013 Legendsoft China (Beijing) Technology Limited

Original file name:
nasvc.dll

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\superapps\superapps.dll

Digital Signature
Signed by:
联软神州(北京)科技有限公司

Authority:
WoSign CA Limited

Valid from:
4/8/2014 2:02:42 PM

Valid to:
4/9/2015 2:02:42 PM

Subject:
CN=联软神州(北京)科技有限公司, E=13501296038@139.com, O=联软神州(北京)科技有限公司, L=北京市, S=北京市, C=CN

Issuer:
CN=WoSign Class 3 Code Signing CA, O=WoSign CA Limited, C=CN

Serial number:
53F2CA73E6F6B01A69A25848A1B39CA2

File PE Metadata
Compilation timestamp:
6/23/2014 6:08:58 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
1536:oHf9h6LicSLLvFTsFHRDN4xrzT8ACIVFL4tIpSSEx0cIUBOYhm2rwlbSZ16QSufU:oH1cLqLRoFxDCj4tdkYh7rwlb816QSEe

Entry address:
0xD24A

Entry point:
6A, 0C, 68, 18, 61, 01, 10, E8, BA, 02, 00, 00, 33, C0, 40, 89, 45, E4, 8B, 75, 0C, 33, FF, 3B, F7, 75, 0C, 39, 3D, CC, A1, 01, 10, 0F, 84, B3, 00, 00, 00, 89, 7D, FC, 3B, F0, 74, 05, 83, FE, 02, 75, 31, A1, 9C, BA, 01, 10, 3B, C7, 74, 0C, FF, 75, 10, 56, FF, 75, 08, FF, D0, 89, 45, E4, 39, 7D, E4, 0F, 84, 85, 00, 00, 00, FF, 75, 10, 56, FF, 75, 08, E8, 22, FE, FF, FF, 89, 45, E4, 3B, C7, 74, 72, 8B, 5D, 10, 53, 56, FF, 75, 08, E8, 05, 73, FF, FF, 89, 45, E4, 83, FE, 01, 75, 0E, 3B, C7, 75, 0A, 53, 57, FF...
 
[+]

Entropy:
6.3103

Developed / compiled with:
Microsoft Visual C++ v7.1

Code size:
80 KB (81,920 bytes)

Remove superapps.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.