» DBGHELP.DLL
Overview
Analysis
File Details
Programs (1)
Downloads (1)

DBGHELP.DLL

Debugging Tools for Windows

Microsoft Corporation

This is installed with Microsoft Windows Performance Toolkit. The file has been seen being downloaded from download.energy-heroes.com.

File name:

DBGHELP.DLL

Publisher:

Microsoft Corporation (signed and verified)

Product:

Debugging Tools for Windows(R)

Description:

Windows Image Helper

Version:

6.10.0003.233 (debuggers(dbg).080908-1333)

MD5:

379afd26403cca7908f4b39c1ad0a86c

SHA-1:

3e787ac853c7608b725a2020380ed2364cb00f04

SHA-256:

cbc2285624088f24550bac9e5c56624ca72f1c3cba3bd51e55f50aafa409581c

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)
Whitelisted (by digital signature)

Analysis date:

8/11/2025 8:30:43 PM UTC (today)

File size:

1 MB (1,069,584 bytes)

Product version:

6.10.0003.233

Original file name:

DBGHELP.DLL

File type:

Dynamic link library (Win32 DLL)

Language:

English (United States)

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\dbghelp.dll

Digital Signature

Signed by:

Microsoft Corporation

Authority:

Microsoft Corporation

Valid from:

8/22/2007 7:23:13 PM

Valid to:

2/22/2009 6:33:13 PM

Subject:

CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Issuer:

CN=Microsoft Code Signing PCA, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Serial number:

610F784D000000000003

File PE Metadata

Compilation timestamp:

9/8/2008 3:46:53 PM

OS version:

6.1

OS bitness:

Win32

Subsystem:

Windows Console

Linker version:

9.0

CTPH (ssdeep):

24576:M6POl20g8okw6NAwZ34s+m1cGOAGtPU7MfKQlpRZgExz0bUfcUWGs1sxf3oONHS2:TbmeGOAGtPU7MfNTE5b8WGscf3oOt5

Entry address:

0x68D21

Entry point:

8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 31, 16, 00, 00, 5D, E9, 89, FD, FF, FF, CC, CC, CC, CC, CC, 3B, 0D, 68, 59, 0F, 03, 75, 02, F3, C3, E9, A1, 16, 00, 00, CC, CC, CC, CC, CC, FF, 25, 50, 11, 00, 03, CC, CC, CC, CC, CC, CC, FF, 25, 28, 12, 00, 03, CC, CC, CC, CC, CC, CC, FF, 25, 24, 12, 00, 03, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 80, F9, 40, 73, 15, 80, F9, 20, 73, 06, 0F, A5, C2, D3, E0, C3, 8B, D0, 33, C0, 80, E1, 1F, D3, E2, C3, 33, C0, 33, D2, C3, CC, CC... 
[+]

Entropy:

6.4315

Code size:

965.5 KB (988,672 bytes)

The file DBGHELP.DLL has been discovered within the following programs.

Microsoft Windows Performance Toolkit by Microsoft Corporation

The new Windows Performance Analysis Toolkit (WPT), included with the Windows Assessment and Deployment Kit (ADK), makes performance issues easier to diagnose. Windows Performance Analyzer (WPA) is a powerful tool used to review aspects of performance on Windows.

5% remove it

The file DBGHELP.DLL has been seen being distributed by the following URL.

http://download.energy-heroes.com/EHGameDownload/GameFiles/Binaries/.../dbghelp.dll

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.