home

dhook_64.dll

Liao Guobo

Publisher:
Liao Guobo  (signed and verified)

Version:
1.0.0.0

MD5:
fd9a88b2c8c24032867f5ef1cb817a6e

SHA-1:
1590575433f29eb93568e844d175fd0c0ae482fc

SHA-256:
c17670eaa20847faf82434add1fa362da29f070890322186846fd85b23c8a71c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 11:16:28 AM UTC  (today)

File size:
587.3 KB (601,408 bytes)

Product version:
1.0.0.0

File type:
Dynamic link library (Win64 DLL)

Language:
English (United States)

Common path:
C:\ProgramData\dhook_64.dll

Digital Signature
Signed by:
Liao Guobo

Authority:
StartCom Ltd.

Valid from:
11/26/2011 2:44:42 AM

Valid to:
11/27/2013 1:03:59 AM

Subject:
E=support@hoposoft.com, CN=Liao Guobo, L=Shenzhen, S=Guangdong, C=CN, Description=575657-pU7OeW9FKsyh29tD

Issuer:
CN=StartCom Class 2 Primary Intermediate Object CA, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL

Serial number:
04AA

File PE Metadata
Compilation timestamp:
2/26/2012 5:37:41 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
6144:8MRN38tAw7ZCY8hpgC80dMS6qimG5sJ/eYBMauc33kwv/:j3GYDhpZ8896qHG5sRUIn

Entry address:
0x73AD0

Entry point:
55, 48, 81, EC, A0, 00, 00, 00, 48, 8B, EC, 48, 89, 4D, 38, 89, 55, 44, 4C, 89, 45, 48, 48, C7, 45, 50, 00, 00, 00, 00, 90, 48, 8D, 4D, 58, 48, 8D, 15, 46, A6, FF, FF, 4C, 8B, 45, 38, 44, 8B, 4D, 44, 48, 8B, 45, 48, 48, 89, 44, 24, 20, E8, 20, BE, F9, FF, 90, 48, C7, 05, 34, 69, 01, 00, 00, 00, 00, 00, 48, C7, 05, 31, 69, 01, 00, 00, 00, 00, 00, C7, 05, 2F, 69, 01, 00, 00, 00, 00, 00, 48, 8D, 4D, 50, 48, 8D, 15, B0, 00, 00, 00, 4D, 33, C0, E8, 1C, A2, FF, FF, 48, 8D, 0D, 1D, 69, 01, 00, 48, 8B, 55, 50, E8...
 
[+]

Code size:
459.5 KB (470,528 bytes)

Scan dhook_64.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.