home

7z.dll

7-Zip

Taiwan Shui Mu Chih Ching Technology Limited

7za.dll is a stand alone plugin for the 7-Zip file archiver and extraction utility. The plugin is used by 3rd-party software to provide archiving functionality for 7z, ZIP and gzip formats and is recompiled by Taiwan Shui Mu Chih Ching Technology Limited. The library 7z.dll, “7z Standalone Plugin” by Taiwan Shui Mu Chih Ching Technology Limited has been known to be a potentially unwanted program that has been detected by 1 anti-malware scanner. Although a detection has been made for this resource, it is generally a commonly distributed 3rd-party library and is typically safe by itself.
Publisher:
Igor Pavlov  (signed by Taiwan Shui Mu Chih Ching Technology Limited)

Product:
7-Zip

Description:
7z Standalone Plugin

Version:
9.20

MD5:
297db5a9bae34d45f5eb9eca3a39ec9e

SHA-1:
7e63da71f0341ad05546310bd30afaeb86089939

SHA-256:
cb1086ea109a2db3ea184c32d358c1da8c5f08b0043efd39bf521b10e96e5395

Scanner detections:
1 / 68

Status:
Inconclusive but possibly unwanted  (It is part of a common redistributable library)

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
4/26/2024 9:15:39 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Common.PartOf.PUP.Thinknice.TaiwanShuiMuChihChingTechnology (M)
16.1.29.12

File size:
837.7 KB (857,768 bytes)

Product version:
9.20

Copyright:
Copyright (c) 1999-2010 Igor Pavlov

Original file name:
7za.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\winzipper\7z.dll

Digital Signature
Signed by:
Taiwan Shui Mu Chih Ching Technology Limited

Authority:
GlobalSign nv-sa

Valid from:
3/13/2013 4:15:13 AM

Valid to:
3/14/2014 4:15:13 AM

Subject:
CN=Taiwan Shui Mu Chih Ching Technology Limited, O=Taiwan Shui Mu Chih Ching Technology Limited, L=新北, S=台湾, C=TW

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121243D90C81CD8FEC70E99813154FB6459

File PE Metadata
Compilation timestamp:
4/23/2013 5:48:16 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
24576:6PVslL8gLYSiARFmGvLONe+sUrnyFn7vGiD5Q660m8oc:6PVslLNLWAvvWrnyJvGiD5Q6rm8T

Entry address:
0x9263E

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 56, 03, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, CC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 50, 4C, 0B, 10, 89, 0D, 4C, 4C, 0B, 10, 89, 15, 48, 4C, 0B, 10, 89, 1D, 44, 4C, 0B, 10, 89, 35, 40, 4C, 0B, 10, 89, 3D, 3C, 4C, 0B, 10, 66, 8C, 15, 68, 4C, 0B, 10, 66, 8C, 0D, 5C, 4C, 0B, 10, 66, 8C, 1D, 38, 4C, 0B, 10, 66, 8C, 05, 34, 4C, 0B, 10, 66, 8C, 25, 30, 4C, 0B, 10, 66, 8C, 2D, 2C, 4C, 0B, 10, 9C, 8F, 05, 60, 4C...
 
[+]

Code size:
619 KB (633,856 bytes)

Scan 7z.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.