home

TvPlayerPluginCore.dll

Tv Player Plugin

ORZILIA LTD

Publisher:
Orzilia Ltd.  (signed by ORZILIA LTD)

Product:
Tv Player Plugin

Version:
1.5.1.0

MD5:
dc6e61efa52a9fc6797fdf2a3ed3500c

SHA-1:
8895815f3f5b9b60a87f01cf7c44760cef6e95e6

SHA-256:
48e16c80283c4523b39e95f247f9bf55c82ee208b12758dbf779328c08997600

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/27/2024 4:34:49 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
W32/Ramnit.C
7.11.30.172

File size:
1016.2 KB (1,040,616 bytes)

Product version:
1.5.1.0

Copyright:
Copyright 2014, Orzilia Ltd.

Original file name:
TvPlayerPluginCore.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\locallow\tv-plug-in\plugins\tvplayerplugin\bin\1.5.1.0\tvplayerplugincore.dll

Digital Signature
Signed by:
ORZILIA LTD

Authority:
VeriSign, Inc.

Valid from:
6/23/2014 8:00:00 AM

Valid to:
6/23/2016 7:59:59 AM

Subject:
CN=ORZILIA LTD, O=ORZILIA LTD, L=Kedar, S=ISRAEL, C=IL

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
60386E301C6CBADD6E4C852A6D36C8F8

File PE Metadata
Compilation timestamp:
1/31/2016 5:45:41 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:QjIPHkp0oL6sEinQvt3XQXmmndi0+zoSjEIUhhP8iCtR0TUMMGQYjz/42:CTLQvS2m0zoSjEpP8iCMTUMTQYjzg2

Entry address:
0x75C8A

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 94, 79, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 33, C0, 39, 45, 0C, 76, 11, 8B, 4D, 08, 66, 83, 39, 00, 74, 08, 40, 41, 41, 3B, 45, 0C, 72, F2, 5D, C3, 8B, FF, 55, 8B, EC, E8, 09, 4C, 00, 00, 8B, 4D, 08, 89, 48, 14, 5D, C3, E8, FC, 4B, 00, 00, 8B, 48, 14, 69, C9, FD, 43, 03, 00, 81, C1, C3, 9E, 26, 00, 89, 48, 14, 8B, C1, C1, E8, 10, 25, FF, 7F, 00, 00, C3, 8B, FF, 55, 8B, EC, 8B, 45, 08, 0F, B7...
 
[+]

Entropy:
6.3627

Code size:
653 KB (668,672 bytes)

The file TvPlayerPluginCore.dll has been seen being distributed by the following URL.

http://www.getvideos.co/Plugins/TvPlayerPlugin/bin/Versions/.../TvPlayerPluginCore.dll

Scan TvPlayerPluginCore.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.