home

Hiverion.dll

Hiverion

ISFORU Co. Ltd.

Publisher:
IsforU Co.,Ltd.  (signed by ISFORU Co. Ltd.)

Product:
Hiverion

Description:
MS IE Extension Support

Version:
11, 6, 12, 0

MD5:
0446d1d4b7e3cb6b6178e4ec50520de7

SHA-1:
c339c5ecfaf5398192e9bfdedd2980bead1d22f0

SHA-256:
9f9fc3e0f5d48ea5e80ca34641cacfa3c431cdb0f9e2816e0fbbbecddadaf6a4

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/26/2024 2:50:31 PM UTC  (today)

Scan engine
Detection
Engine version

Malwarebytes
Adware.KorAd
v2014.04.28.05

File size:
900.9 KB (922,488 bytes)

Product version:
11, 6, 12, 0

Copyright:
Copyright (c) IsforU Co.,Ltd. All rights reserved.

Trademarks:
Hiverion

Original file name:
Hiverion.dll

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\roaming\memothis\hiverion.dll

Digital Signature
Signed by:
ISFORU Co. Ltd.

Authority:
Thawte, Inc.

Valid from:
7/22/2010 9:00:00 AM

Valid to:
9/20/2012 8:59:59 AM

Subject:
CN=ISFORU Co. Ltd., OU=Dev Team, O=ISFORU Co. Ltd., L=Mapo-gu, S=Seoul, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
54C92AB2C9B41B853A81CAD82D42F77F

Registration
CLSID:
{A595CAC1-D102-495A-9301-84483913E1E6}

ProgID:
Hiverion.ActionInfo.1

COM registered:
Yes

File PE Metadata
Compilation timestamp:
6/15/2011 1:08:46 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:NZWC2efUK9nBGIjUQCFlin0y3pjIvyl3JlFGQ:yCNq7TA3jIgJqQ

Entry address:
0x8FCD9

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, AD, 04, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, CC, FE, FF, FF, 59, 5D, C2, 0C, 00, FF, 25, 7C, D3, 09, 10, FF, 25, 78, D3, 09, 10, FF, 25, 74, D3, 09, 10, FF, 25, 70, D3, 09, 10, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, E4, FF, 0C, 10, 33, C5, 50, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00, 00, C3, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56...
 
[+]

Entropy:
6.7843

Code size:
620.5 KB (635,392 bytes)

Safe for Initializing Control
CLSID:
{A595CAC1-D102-495A-9301-84483913E1E6}

CLSID name:
ActionInfo Class


Scan Hiverion.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.