home

my_setup_interface.dll

安装程序漂亮界面支持库

tianjin zhongge technology Co.,Ltd.

Publisher:
天津市中格科技有限公司  (signed by tianjin zhongge technology Co.,Ltd.)

Product:
安装程序漂亮界面支持库

Version:
1.0.2.0

MD5:
6aecf526d1d0689af899f2e460662376

SHA-1:
c3de12bfac994f868a0e4bc0080778a002e219b6

SHA-256:
cda145ddd1319edb933cd5d69d5d9cd50cb14762d89734f633c2cfa593ab911c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 8:29:04 AM UTC  (today)

File size:
2.1 MB (2,220,872 bytes)

Product version:
1.0.2.0

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\my_setup_interface.dll

Digital Signature
Signed by:
tianjin zhongge technology Co.,Ltd.

Authority:
VeriSign, Inc.

Valid from:
5/25/2012 8:00:00 AM

Valid to:
5/26/2015 7:59:59 AM

Subject:
CN="tianjin zhongge technology Co.,Ltd.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="tianjin zhongge technology Co.,Ltd.", L=tianjin, S=tianjin, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
559558BBB61D1F0A9E251E6726ED1254

File PE Metadata
Compilation timestamp:
3/17/2015 12:08:06 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:DDslt5YSubNyp81ViTGgpnVTTeS4lf3rz7fyDB:DDesyp8uplJ8v+1

Entry address:
0xE7DE0

Entry point:
55, 8B, EC, 83, C4, C0, B8, 0C, 12, 4E, 00, E8, 20, 23, F2, FF, E8, 5B, E1, F1, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 02, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 32, 13, 8B, C0, 00, 8D, 40, 00, 00, 8D, 40, 00, 00, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 4A, 9C, 40, 00, DE, 24, DF, CE, A4, 80, 7D, 44, 8C, 75, EB, 87, 1D, C1, 21, FD, E0, 25, 40, 00, 3C, 26, 40, 00...
 
[+]

Entropy:
7.3401

Developed / compiled with:
Microsoft Visual C++

Code size:
922 KB (944,128 bytes)

Scan my_setup_interface.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.