mwinrunexec.dll

Scan mwinrunexec.dll - Powered by Reason Core Security
MD5:
ce393ad8c7e0bfc80c75921634e5fe7a

SHA-1:
edbb9c7ad2eb5075cef8ae56cc153b2b74789502

SHA-256:
32fb2e0498b370ffce34922fd09bc98fd5b0b1287264c7dfed6ce26996a241ef

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/8/2016 7:08:52 PM UTC  (today)

File size:
397.5 KB (407,040 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\ProgramData\{1b787b4e-b332-46d3-9f75-962ba19afe35}\offline\mwinrun.dll\mwinrunexec.dll

File PE Metadata
Compilation timestamp:
11/1/2012 10:23:32 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
6144:zss6nw1UdFORW3Lk/DZ1H+dfX2goNYRHxeWk1LFfN11eT03a1FFuAQ+4vdN:zZUdFORWWt1LgoCk35f/1803KFXzSdN

Entry address:
0x5683C

Entry point:
55, 8B, EC, 83, C4, B8, 53, 33, C0, 89, 45, C0, 89, 45, BC, 89, 45, B8, B8, 0C, 5D, 45, 00, E8, C8, FF, FA, FF, 33, C0, 55, 68, E3, 68, 45, 00, 64, FF, 30, 64, 89, 20, B8, 00, 04, 00, 00, E8, F0, C5, FA, FF, 8B, D8, 68, 00, 04, 00, 00, 53, 68, F0, 68, 45, 00, E8, 26, 02, FB, FF, 50, E8, 18, 02, FB, FF, A1, EC, 87, 45, 00, 8B, D3, E8, 34, E3, FA, FF, 8D, 45, B8, 8B, D3, E8, 2A, E3, FA, FF, 8B, 45, B8, 8D, 55, BC, E8, F3, 26, FB, FF, 8B, 45, BC, 8D, 55, C0, E8, 88, E5, FF, FF, 8B, 55, C0, A1, CC, 87, 45, 00...
 
[+]

Entropy:
6.5840

Developed / compiled with:
Microsoft Visual C++

Code size:
342.5 KB (350,720 bytes)

Scan mwinrunexec.dll - Powered by Reason Core Security