home

KmTransmit.DLL

KmTransmit Dynamic Link Library

Zhejiang HaoYing Network Co. , Ltd

Publisher:
皮皮科技  (signed by Zhejiang HaoYing Network Co. , Ltd)

Product:
KmTransmit Dynamic Link Library

Description:
KmTransmit DLL

Version:
6.3.0.2

MD5:
4f1b1aeb01fb70c0fa4dc3ba3b4af45f

SHA-1:
4969f234471bbbd7f320b8530ca25d77459a477a

SHA-256:
35f7c336926a11b0f68bdcaf222e43b61aa7c4970c1c310b161cdfc7223080b3

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/25/2024 9:07:37 PM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
DLOADER.Trojan
9.0.1.034

F-Secure
Trojan.Generic.12358354
11.2015-03-02_3

File size:
1 MB (1,059,696 bytes)

Product version:
6.3.0.2

Copyright:
版权所有 (C) 2004

Original file name:
KmTransmit.DLL

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\roaming\pipi\plugins\kmtransmit.dll

Digital Signature
Signed by:
Zhejiang HaoYing Network Co. , Ltd

Authority:
WoSign eCommerce Services Limited

Valid from:
6/5/2012 5:50:51 PM

Valid to:
6/8/2015 10:51:17 PM

Subject:
E=ycz@pipi.cn, CN="Zhejiang HaoYing Network Co. , Ltd", O="Zhejiang HaoYing Network Co. , Ltd", L=Hangzhou, S=Zhejiang, C=CN

Issuer:
CN=WoSign Class 3 Code Signing CA, O=WoSign eCommerce Services Limited, C=CN

Serial number:
01966376F522EE

File PE Metadata
Compilation timestamp:
12/26/2014 2:29:33 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
24576:E9m3TJH806hJ53jmaPHKpJZU7sEXC7D+3kZr1:QYYjmqaJWS7D1J

Entry address:
0xB4714

Entry point:
6A, 0C, 68, 20, 00, 3E, 66, E8, D4, 02, 00, 00, 33, C0, 40, 89, 45, E4, 33, FF, 89, 7D, FC, 8B, 75, 0C, 3B, F7, 75, 0C, 39, 3D, 74, 10, 3F, 66, 0F, 84, AC, 00, 00, 00, 3B, F0, 74, 05, 83, FE, 02, 75, 31, A1, 84, 10, 3F, 66, 3B, C7, 74, 0C, FF, 75, 10, 56, FF, 75, 08, FF, D0, 89, 45, E4, 39, 7D, E4, 0F, 84, 85, 00, 00, 00, FF, 75, 10, 56, FF, 75, 08, E8, E5, FE, FF, FF, 89, 45, E4, 3B, C7, 74, 72, 8B, 5D, 10, 53, 56, FF, 75, 08, E8, 2B, 57, F7, FF, 89, 45, E4, 83, FE, 01, 75, 0E, 3B, C7, 75, 0A, 53, 57, FF...
 
[+]

Entropy:
6.5810

Developed / compiled with:
Microsoft Visual C++ v7.1

Code size:
740 KB (757,760 bytes)

Scan KmTransmit.DLL - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.