home

initechshttpinterface.10121.dll

INISAFE Web v7.0

bestech

Publisher:
(c) INITECH  (signed by bestech)

Product:
INISAFE Web v7.0

Description:
INITECH HTTP Wrapper Handler

Version:
1, 0, 1, 21

MD5:
1952042a24e744e577ecdfed696e7893

SHA-1:
5c9deee42a44cac43644d3a6aea0a2ea98349fa9

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/16/2024 1:38:57 PM UTC  (today)

Scan engine
Detection
Engine version

Clam AntiVirus
Win.Trojan.Ramnit-1847
0.98/22442

F-Secure
Win32.Ramnit
5.15.154

File size:
212 KB (217,088 bytes)

Product version:
1, 0, 1, 21

Copyright:
(c) INITECH. All rights reserved.

Original file name:
InitechSHTTPInterface.dll

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\initech\shttp\initechshttpinterface.10121.dll

Digital Signature
Signed by:
bestech

Authority:
INITECH

Valid from:
2/20/2002 6:03:18 PM

Valid to:
2/19/2007 6:03:18 PM

Subject:
E=admin@bestech.com, CN=admin, OU=webteam, O=bestech, L=SEOUL, C=KR

Issuer:
E=sp128-support@initech.com, CN=INITECH Plugin CA, OU=PLUGIN Certificate Authority, O=INITECH, L=Seoul, S=Seoul, C=KR

Serial number:
01AE

Registration
CLSIDs:
{5D6F1A06-4210-4249-8688-98D13922512C}, {D37E6C5F-1C0F-47C0-A3B6-403EEC555402}

ProgID:
INIHTTP.HTTPWrapper.1

COM registered:
Yes

File PE Metadata
Compilation timestamp:
5/17/2010 4:39:27 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
3072:Vx2WNks3oCAYY6WFEiR8V1Gl6s0tPUDb0fNs33bJ58:mW+s3oCAYYLRmTScu33bs

Entry address:
0x2D000

Entry point:
60, E8, 00, 00, 00, 00, 5D, 8B, C5, 81, ED, 32, 6F, 01, 20, 2B, 85, 50, 72, 01, 20, 89, 85, 4C, 72, 01, 20, B0, 00, 86, 85, 9E, 74, 01, 20, 3C, 01, 0F, 85, DE, 02, 00, 00, 8B, 85, 4C, 72, 01, 20, 2B, 85, 58, 72, 01, 20, 8B, 00, 89, 85, EA, 73, 01, 20, 8B, 85, 4C, 72, 01, 20, 2B, 85, 5C, 72, 01, 20, 8B, 00, 89, 85, F2, 73, 01, 20, 83, BD, F2, 73, 01, 20, 00, 0F, 84, A9, 02, 00, 00, 83, BD, EA, 73, 01, 20, 00, 0F, 84, 9C, 02, 00, 00, 8D, 85, 8D, 74, 01, 20, 50, FF, 95, EA, 73, 01, 20, 83, F8, 00, 0F, 84, 86...
 
[+]

Entropy:
5.9482

Packer / compiler:
ASPack v1.08.04

Code size:
77 KB (78,848 bytes)

PROTOCOLS Handler
Type of handler:
s-http

CLSID:
{D37E6C5F-1C0F-47C0-A3B6-403EEC555402}

CLSID name:
HTTPWrapper Class


Scan initechshttpinterface.10121.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.