home

messagequeue.dll

Hangzhou Chuangju Technology Co.,LTD

Publisher:
Hangzhou Chuangju Technology Co.,LTD  (signed and verified)

MD5:
8899048ca8227d82238cf2e798c8d73c

SHA-1:
ed10cd1931c66770368f67d0dbce52a512b7bfc3

SHA-256:
4000780ab376ed861c5f6711daf70979d44c43d6b42ccab8f1e9edcbef729dc9

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/26/2024 7:16:51 AM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
HW32.Packed
1.3.0.6185

File size:
175.1 KB (179,336 bytes)

File type:
Dynamic link library (Win32 DLL)

Digital Signature
Signed by:
Hangzhou Chuangju Technology Co.,LTD

Authority:
WoSign eCommerce Services Limited

Valid from:
7/18/2011 4:27:34 AM

Valid to:
7/19/2014 9:43:00 AM

Subject:
E=web@safedog.cn, CN="Hangzhou Chuangju Technology Co.,LTD", O="Hangzhou Chuangju Technology Co.,LTD", L=Hangzhou, S=Zhejiang, C=CN

Issuer:
CN=WoSign Class 3 Code Signing CA, O=WoSign eCommerce Services Limited, C=CN

Serial number:
7D81565064D7

File PE Metadata
Compilation timestamp:
9/5/2014 9:02:28 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
3072:1Nzh9Uz5Y5+vaKhqS7F+AlzutB+JdCuhqrSGJpvEVAhDKyIXbFP:Qz5Y5OqSwAVutB+LGrjJpnvIXb5

Entry address:
0x5364B

Entry point:
E9, 8F, 08, 00, 00, D4, F5, 65, E5, 8B, 32, B9, A1, 06, FA, D1, F2, 7E, F4, 70, E2, 72, E8, 6E, FA, 76, F0, 70, 08, 7C, 5F, 03, 34, B2, 21, 55, 5A, 20, 90, 16, 15, 5D, C1, 47, 48, 3A, 32, 4D, FF, B7, 30, 83, 12, A3, 59, 6A, E9, 35, A0, A4, 3D, B5, 46, 11, 5D, BB, 6B, 96, A9, 9E, EB, 58, 9C, E8, D5, A6, BC, 13, 69, 91, 11, 5C, C7, 4E, CB, 06, 76, BA, 23, AA, B5, B3, 2F, 53, 0B, 41, 7C, 7B, 2C, B5, 8A, F0, 38, 3E, 19, 85, BD, 25, 3B, F8, 58, 01, C0, B7, 75, 04, 3B, 30, 4C, F5, 73, 7C, 32, AE, A1, DF, E8, 66...
 
[+]

Entropy:
7.9332

Packer / compiler:
Xtreme-Protector v1.05

Code size:
73.5 KB (75,264 bytes)

Scan messagequeue.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.