Gridinsoft Logo

The iis_Stupid_Menu.dll (ii's Stupid Menu) File Analysis

Updated 2 months ago
Checked by Malware Check
iis_Stupid_Menu.dll

Technical Analysis

File Name iis_Stupid_Menu.dll
File Type
Win32 DLL
Magic Bytes PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows
SSDEEP Hash
49152:yL8Mg8fW+gyKn1wicfLoa4EKiOqy3r4X:wg8fzKu/y3
Scanner Version 1.0.228.174
Database Version 2025-10-24 05:00:18 UTC

Suspicious File Detected

Detected by 15 security engines - requires caution

This file requires additional checking for potential threats. Based on suspicious indicators, we will soon add it to our virus database.
21%
Detection Rate
1,647,104
File Size (bytes)
15/72
Engines Detected
2025-10-24
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
42a353f1bc6bf7448bd224cf30bf4093
SHA1
4da423fb7914ca43f0b844a4feaabe0d3c883209
SHA256
c2d0fca4d364122beeb618dd4388d1e59ef698596d1ed470947ba66ee4d7dd60
SHA512
d09dfbe114804c5a310337ca3be65b838b5e0eb758d6795731b296b7aae90f38acd85e17824a1f50867734dff8ac157fb3c2248d99b458a1917128ee474cc98a
ImpHash
dae02f32a21e03ce65412f6e56942daa

Security Engines with Detections (15 of 72)

MicroWorld-eScan
Gen:Variant.Application.Zusy.310104 Malicious
ALYac
Gen:Variant.Application.Zusy.310104 Malicious
VIPRE
Gen:Variant.Application.Zusy.310104 Malicious
K7AntiVirus
Adware ( 005693e61 ) Malicious
BitDefender
Gen:Variant.Application.Zusy.310104 Malicious
K7GW
Adware ( 005693e61 ) Malicious
Arcabit
Trojan.Application.Zusy.D4BB58 Malicious
ESET-NOD32
a variant of MSIL/GameHack_AGen.ES potentially unsafe Malicious
CTX
dll.unknown.zusy Malicious
Emsisoft
Gen:Variant.Application.Zusy.310104 (B) Malicious
Webroot
W32.Trojan.Gamehack Malicious
Microsoft
Trojan:Win32/Sabsik.FL.A!ml Malicious
GData
Gen:Variant.Application.Zusy.310104 Malicious
VBA32
Downloader.MSIL.gen.rexp Malicious
Malwarebytes
RiskWare.GameHack Malicious
57 engines reported no threats - Only engines with detections are shown above for clarity

PE Analysis

Basic Information

Image Base 0x10000000
Entry Point 0x101935aa
Compilation Time 2100-05-15 14:10:19
Checksum 0x00000000 (Actual: 0x0019b0d0)
OS Version 4.0
PEiD Signatures PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows
PDB Path G:\Other Stuff\Gorilla Tag Mods\! ii'sStupidMenu\obj\Release\netstandard2.1\ii's Stupid Menu.pdb
Digital Signature No valid SignedData structure was found.
Imports 1 libraries
mscoree
Exports 0 functions
Resources 1 Resources
Sections 3 Sections

Version Information

Translation 0x0000 0x04b0
Comments Created by @crimsoncauldron with love <3 [Debug]
CompanyName Goldentrophy Software
FileDescription ii's Stupid Menu
FileVersion 7.5.1.0
InternalName ii's Stupid Menu.dll
LegalCopyright
OriginalFilename ii's Stupid Menu.dll
ProductName ii's Stupid Menu
ProductVersion 7.5.1
Assembly Version 7.5.1.0

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00002000 1,644,760 bytes 1,645,056 bytes 6.19 (Normal) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 5A17A59E321F96AB02A9A3DBDAE21886
.rsrc 0x00194000 1,008 bytes 1,024 bytes 3.27 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ CED3BA16B3430E85347A925253CD200F
.reloc 0x00196000 12 bytes 512 bytes 0.10 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ D4CAB464BB6B93A777206467781281FC

Resource Analysis

Total Resources: 1 (916 bytes)
Resource Type Count Total Size Percentage
RT_VERSION 1 916 bytes
100%

Certificate Chain Analysis

Certificate Information
Product ii's Stupid Menu
Description ii's Stupid Menu
File Version 7.5.1.0
Original Name ii's Stupid Menu.dll
Internal Name ii's Stupid Menu.dll

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

No valid SignedData structure was found.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
15 antivirus engines detected potential threats. This could be a false positive, especially for system tools or packed software. Verify the file source and check if it's digitally signed by a trusted publisher.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.

Your Score for
/

Gridinsoft Anti-Malware

Stay Malware-Free: Keep Your PC Protected with Gridinsoft Anti-Malware

Gridinsoft Anti-Malware offers just that—peace of mind with a robust, user-friendly solution that’s constantly updated to combat the latest threats. Designed by cybersecurity experts, it provides real-time protection and effortless malware removal. It’s not just about detecting threats; it's about enhancing your digital life with uninterrupted security. Give it a try and experience what it feels like to browse worry-free!

Gridinsoft Anti-Malware Download Now
Gridinsoft Anti-Malware