home

acdetoured.dll

Microsoft Research Detours Package

Cisco Systems, Inc.

Publisher:
Microsoft Corporation  (signed by Cisco Systems, Inc.)

Product:
Microsoft Research Detours Package

Description:
Marks process modified by Detours technology.

Version:
Professional Version 2.1 Build_223

MD5:
8c850c685e6e076d494b6660c3d59f46

SHA-1:
5c8b0347ab97343b4257ec20078eeb4b7c02313d

SHA-256:
81b72ee662f3ff903a60056537b2981912da52c12c76bcc482f77d2faf189e88

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/10/2024 5:48:00 PM UTC  (today)

File size:
10.4 KB (10,640 bytes)

Product version:
Professional Version 2.1 Build_223

Copyright:
Copyright (C) Microsoft Corporation. All rights reserved.

Original file name:
DETOURED.DLL

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Windows\System32\acdetoured.dll

Digital Signature
Signed by:
Cisco Systems, Inc.

Authority:
VeriSign, Inc.

Valid from:
1/2/2013 7:00:00 PM

Valid to:
4/4/2015 7:59:59 PM

Subject:
CN="Cisco Systems, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Cisco Systems, Inc.", L=Boxborough, S=Massachusetts, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
5ECE4ABD054DB0EE1ACEF57C4D3F442C

File PE Metadata
Compilation timestamp:
3/12/2014 4:46:27 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
8.0

CTPH (ssdeep):
192:QIfWndvWDnYe+PjPDrZo+voer9ZCspE+TMArHGXVf:QIfWndvWDnYPLJ6eMOGt

Entry address:
0x1006

Entry point:
83, 7C, 24, 08, 01, 75, 10, 8B, 44, 24, 04, 50, A3, 00, 30, 00, 0F, FF, 15, 00, 20, 00, 0F, 33, C0, 40, C2, 0C, 00, CC, FF, 25, 00, 20, 00, 0F, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.9522

Code size:
512 Bytes (512 bytes)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.