home

apihook.dll

mutechrome

Guangzhou WeiSi Software CO.,ltd

Publisher:
Guangzhou WeiSi Software CO.,ltd  (signed and verified)

Product:
mutechrome

Description:
mute chrome

Version:
1, 0, 0, 5

MD5:
9458b27e288416747aaa730e0d95ced1

SHA-1:
b5a38ae1a3ccd29e854db8e0d4a9825baa02295c

SHA-256:
d798f8c9bb7172a526e9f308c8d8915e496315decf2d634b4c13f0bfc9d0e0b0

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 11:41:37 PM UTC  (a few moments ago)

File size:
76 KB (77,808 bytes)

Product version:
1, 0, 0, 5

Copyright:
Copyright (C) 2010

Original file name:
mutechrome.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\720browser\user data\default\extensions\ggligihfilnjlkelmgocecleijpdkeag\0.9.3_0\plugin\apihook.dll

Digital Signature
Signed by:
Guangzhou WeiSi Software CO.,ltd

Authority:
VeriSign, Inc.

Valid from:
10/22/2013 8:00:00 AM

Valid to:
1/21/2017 7:59:59 AM

Subject:
CN="Guangzhou WeiSi Software CO.,ltd", OU=研发部, OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Guangzhou WeiSi Software CO.,ltd", L=Guangzhou, S=Guangdong, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
3A7C9F4EF30AA8D24CA1A911038451EE

File PE Metadata
Compilation timestamp:
8/15/2011 9:01:18 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
768:CAMNu9n7PfaBdYbGQjho9ykFvF1w/k/YqpcVpRhCvsii+XBu/gA0IEfEwbdMv:CABn7PnKAWvfw/k/kFd+XBu/9cswbW

Entry address:
0x2FF0

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 6A, 46, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 70, 12, 01, 10, 89, 0D, 6C, 12, 01, 10, 89, 15, 68, 12, 01, 10, 89, 1D, 64, 12, 01, 10, 89, 35, 60, 12, 01, 10, 89, 3D, 5C, 12, 01, 10, 66, 8C, 15, 88, 12, 01, 10, 66, 8C, 0D, 7C, 12, 01, 10, 66, 8C, 1D, 58, 12, 01, 10, 66, 8C, 05, 54, 12, 01, 10, 66, 8C, 25, 50, 12, 01, 10, 66, 8C, 2D, 4C, 12, 01, 10, 9C, 8F, 05, 80, 12...
 
[+]

Entropy:
6.3688

Code size:
42 KB (43,008 bytes)

Scan apihook.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.