home

dhook_64.dll

Liao Guobo

Publisher:
Liao Guobo  (signed and verified)

Version:
1.0.0.0

MD5:
2a8ec3000c36420242798ba432bcb2ab

SHA-1:
707b4dec79c4405da55870671270e1dede916791

SHA-256:
4240ef9c5d260e31a094b6ade1fe63737cba84fecddde65a561c23703914a5a4

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 10:19:53 PM UTC  (today)

File size:
585.4 KB (599,408 bytes)

Product version:
1.0.0.0

File type:
Dynamic link library (Win64 DLL)

Language:
English (United States)

Common path:
C:\ProgramData\dhook_64.dll

Digital Signature
Signed by:
Liao Guobo

Authority:
StartCom Ltd.

Valid from:
11/26/2011 1:44:42 AM

Valid to:
11/27/2013 12:03:59 AM

Subject:
E=support@hoposoft.com, CN=Liao Guobo, L=Shenzhen, S=Guangdong, C=CN, Description=575657-pU7OeW9FKsyh29tD

Issuer:
CN=StartCom Class 2 Primary Intermediate Object CA, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL

Serial number:
04AA

File PE Metadata
Compilation timestamp:
2/26/2012 4:37:41 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
6144:oMRN38tAw7ZCY8hpgC80dMS6qimG5sJ/eYBMauc33kwUw:P3GYDhpZ8896qHG5sRUIT

Entry address:
0x73AD0

Entry point:
55, 48, 81, EC, A0, 00, 00, 00, 48, 8B, EC, 48, 89, 4D, 38, 89, 55, 44, 4C, 89, 45, 48, 48, C7, 45, 50, 00, 00, 00, 00, 90, 48, 8D, 4D, 58, 48, 8D, 15, 46, A6, FF, FF, 4C, 8B, 45, 38, 44, 8B, 4D, 44, 48, 8B, 45, 48, 48, 89, 44, 24, 20, E8, 20, BE, F9, FF, 90, 48, C7, 05, 34, 69, 01, 00, 00, 00, 00, 00, 48, C7, 05, 31, 69, 01, 00, 00, 00, 00, 00, C7, 05, 2F, 69, 01, 00, 00, 00, 00, 00, 48, 8D, 4D, 50, 48, 8D, 15, B0, 00, 00, 00, 4D, 33, C0, E8, 1C, A2, FF, FF, 48, 8D, 0D, 1D, 69, 01, 00, 48, 8B, 55, 50, E8...
 
[+]

Code size:
459.5 KB (470,528 bytes)

Scan dhook_64.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.