» tait40.dll
Overview
Analysis
File Details
Downloads (4)

tait40.dll

File name:

tait40.dll

MD5:

a7bab94cdfef7b6992497712a3380581

SHA-1:

77c22596d5efc5471eef77ef4bae7175b6081e00

SHA-256:

01df8a81221599687676dda2dc865b513f31622a1495ff7c91418483a51a0c50

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

11/16/2024 9:02:13 PM UTC (today)

File size:

258.5 KB (264,739 bytes)

File type:

Dynamic link library (Win64 DLL)

Common path:

C:\Documents and Settings\{user}\Local settings\temporary internet files\content.ie5\{random}\tait40.dll

File PE Metadata

OS bitness:

Win64

CTPH (ssdeep):

6144:4A7G+UoJQjSThU08rWHun77FN5sU3yVsbuRKgfHqmTqSKSL/oO/c:rC+UoSkWfWHunpVbCKmHBGdSL/oOk

Entry point:

4D, 53, 43, 46, 00, 00, 00, 00, 23, 0A, 04, 00, 00, 00, 00, 00, 2C, 00, 00, 00, 00, 00, 00, 00, 03, 01, 01, 00, 01, 00, 00, 00, 00, 00, 00, 00, 47, 00, 00, 00, 1E, 00, 03, 15, 00, 92, 0E, 00, 00, 00, 00, 00, 00, 00, 64, 3F, 8C, 5B, 20, 00, 54, 41, 49, 54, 34, 30, 2E, 64, 6C, 6C, 00, 45, F8, EC, 86, 16, 2B, 00, 80, 5B, 80, 80, 8D, 4B, 10, C0, D9, 00, 00, 22, 42, 00, 34, 00, 00, 0D, 00, BF, FF, D5, 57, BE, F3, AE, 9C, 2B, 5B, 95, 91, 85, 82, 90, 85, 40, 93, 51, 4A, B4, D2, B1, 1F, 81, 60, 8E, 80, EF, 21, 1C... 
[+]

Entropy:

7.9989 (probably packed)

The file tait40.dll has been seen being distributed by the following 4 URLs.

http://mylabs.px.pearsoned.com/SIMrepository/web/.../wxOpIBII7IUdYgP2GP&SessionID=vn5qedntxipy3xki0mofbl5n

http://mylabs.px.pearsoned.com/SIMrepository/.../servecontent.pctp?intAssetID=470&FileMode=3&TokenID=o7BCPvps9Uhg94w5taZmyICUe3yozu4j&SessionID=c3z0pp4oz2ktgrbc2agmo2ei

http://mylabs.px.pearsoned.com/SIMrepository/web/.../UyowKQys8hFMAuMHS&SessionID=2hmgl2x0ezqsc3gqijvtc5el

http://mylabs.px.pearsoned.com/SIMrepository/.../servecontent.pctp?intAssetID=470&FileMode=3&TokenID=8qwGBHbQMcUcXeQOXkQukqJjpIQ1ADRy&SessionID=sqwpozcdci55sfuvrk22oajl

Scan tait40.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.