home

callprocess.dll

Japanese Government

Publisher:
Japanese Government  (signed and verified)

MD5:
918cd092002b3dae540e8a0bb5d27b6e

SHA-1:
50db5c6ff9ce43fa661e34fc1462dee40fc16159

SHA-256:
0e3a16133b146179f443d638bf3083c45d100d24baf19982e4dfc7db0ba78023

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 6:27:44 AM UTC  (today)

File size:
59.4 KB (60,776 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\.egovfc\callprocess.dll

Digital Signature
Signed by:
Japanese Government

Authority:
Japanese Government

Valid from:
11/6/2013 12:00:00 AM

Valid to:
11/5/2016 11:59:59 PM

Subject:
CN=Ministry of Internal Affairs and Communications, OU=Ministry of Internal Affairs and Communications, O=Japanese Government, C=JP

Issuer:
CN=ApplicationCA2 Sub, OU=GPKI, O=Japanese Government, C=JP

Serial number:
333930323439353938343732

File PE Metadata
Compilation timestamp:
10/4/2013 3:20:52 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
768:YubcqIbwq/hFtlXNX55uZRncWH8bdtFrHt3/Yja7vkbllMVjFdbL+Ea:YubcXPTw8bdrtJOlMpFdOEa

Entry address:
0x1BA3

Entry point:
83, 7C, 24, 08, 01, 75, 05, E8, 32, 2F, 00, 00, FF, 74, 24, 04, 8B, 4C, 24, 10, 8B, 54, 24, 0C, E8, ED, FE, FF, FF, 59, C2, 0C, 00, 55, 8B, EC, 83, EC, 04, 89, 7D, FC, 8B, 7D, 08, 8B, 4D, 0C, C1, E9, 07, 66, 0F, EF, C0, EB, 08, 8D, A4, 24, 00, 00, 00, 00, 90, 66, 0F, 7F, 07, 66, 0F, 7F, 47, 10, 66, 0F, 7F, 47, 20, 66, 0F, 7F, 47, 30, 66, 0F, 7F, 47, 40, 66, 0F, 7F, 47, 50, 66, 0F, 7F, 47, 60, 66, 0F, 7F, 47, 70, 8D, BF, 80, 00, 00, 00, 49, 75, D0, 8B, 7D, FC, 8B, E5, 5D, C3, 55, 8B, EC, 83, EC, 10, 89, 7D...
 
[+]

Entropy:
5.9823

Code size:
36 KB (36,864 bytes)

Scan callprocess.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.