» update.dll
Overview
Analysis
File Details
Downloads (1)

update.dll

File name:

update.dll

MD5:

8588345f12b8a0ada0cd7910603d113c

SHA-1:

6e88a0f05577ff07b53c9beb3ff423b7318cdd06

SHA-256:

e35f6b4a53d9fabdc109c60492ff86b0bbc7cc232e0d5bc8d3e3c6247789ac5a

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

12/29/2024 6:38:16 AM UTC (today)

File size:

133 Bytes

File type:

Dynamic link library (Win64 DLL)

Common path:

C:\users\{user}\appdata\local\microsoft\windows\inetcache\ie\{random}\update.dll

File PE Metadata

OS bitness:

Win64

CTPH (ssdeep):

3:tyXLzFMKsSvwQjOdgHjewb1ERGNrfvTARgNMEYDRREZSzU9M93H:tmLGQjO6HjJ4arfvToNRsAX

Entry point:

5B, 55, 70, 64, 61, 74, 65, 5D, 0A, 4E, 65, 77, 56, 65, 72, 73, 69, 6F, 6E, 3D, 37, 0A, 55, 70, 64, 61, 74, 65, 46, 69, 6C, 65, 4E, 75, 6D, 62, 65, 72, 3D, 31, 0A, 55, 70, 64, 61, 74, 65, 46, 69, 6C, 65, 31, 3D, 55, 70, 64, 61, 74, 65, 37, 2F, 50, 61, 74, 63, 68, 49, 6E, 66, 6F, 2E, 7A, 0A, 53, 65, 72, 76, 65, 72, 4E, 75, 6D, 62, 65, 72, 3D, 31, 0A, 53, 65, 72, 76, 65, 72, 31, 3D, 68, 74, 74, 70, 3A, 2F, 2F, 6C, 61, 75, 6E, 63, 68, 65, 72, 2E, 72, 66, 2D, 70, 72, 69, 6E, 63, 65, 2E, 63, 6F, 6D, 3A, 31, 30... 
[+]

The file update.dll has been seen being distributed by the following URL.

http://launcher.rf-prince.com:10007/update.dll?0

Scan update.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.