home

442175.dll

ISOShell

SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD.

Publisher:
EZB Systems, Inc.  (signed by SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD.)

Product:
ISOShell

Version:
1, 0, 0, 2

MD5:
bd1f38008ba6f0a1c1bfd09b2628432f

SHA-1:
43a365b350cd39a887cec57a31f38c47bfabb43a

SHA-256:
f4bd9f20c76d91c5090f64e85391481ab899a4ab955c4cd32362525bea04ff22

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/23/2024 4:06:44 PM UTC  (today)

File size:
68 KB (69,632 bytes)

Product version:
1, 0, 0, 2

Copyright:
Copyright (c) 2006-2007 EZB Systems, Inc.

Original file name:
ISOShell.DLL

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\s-1-5-31-1286970278978-5713669491-166975984-320\rotinom\deleted\applications\x-dll\442175.dll

Digital Signature
Signed by:
SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD.

Authority:
GlobalSign nv-sa

Valid from:
1/30/2009 12:29:58 PM

Valid to:
1/30/2010 12:29:58 PM

Subject:
E=cert@ezbsystems.com, CN=SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD., O=SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD., C=CN

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
0100000000011F27455749

File PE Metadata
Compilation timestamp:
7/17/2007 5:53:08 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
1536:8XiC/sdvqZvrgnoOKoFmdPvhr8riHnDQX+wt:EiC/sdAv0nJKoFmdPvhrpDQj

Entry address:
0x40FF

Entry point:
FF, 74, 24, 0C, FF, 74, 24, 0C, FF, 74, 24, 0C, E8, D7, D5, FF, FF, C2, 0C, 00, FF, 15, A8, 70, 00, 10, 33, C0, C3, A1, F0, A6, 00, 10, 56, 85, C0, 75, 13, FF, 74, 24, 08, 50, FF, 35, 90, A6, 00, 10, FF, 15, 34, 70, 00, 10, 5E, C3, 8B, 0D, F4, A6, 00, 10, 8B, 15, EC, A6, 00, 10, FF, 05, F4, A6, 00, 10, 23, D1, 8B, 34, 90, 8B, 44, 24, 08, 83, C0, 08, 50, 6A, 00, 56, FF, 15, 34, 70, 00, 10, 85, C0, 74, 07, 89, 30, 83, C0, 08, 5E, C3, 33, C0, 5E, C3, 8B, 44, 24, 04, 33, C9, 3B, C1, 75, 0B, FF, 74, 24, 08, E8...
 
[+]

Entropy:
5.5921

Code size:
24 KB (24,576 bytes)

Scan 442175.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.