home

pluginoffer.dll

Alibaba (China) Network Technology Co.,Ltd.

Publisher:
Alibaba (China) Network Technology Co.,Ltd.  (signed and verified)

MD5:
e79b0bea0bb63e63b8afeb0a5813989c

SHA-1:
4808211d4fff5bb52abb409d4444f7924712e21d

SHA-256:
85f6bd12393179f3859bba02908d6e1177bd87705d463c97e344abd12962ea01

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/20/2024 2:55:57 PM UTC  (today)

File size:
887.4 KB (908,696 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\offerassistant\plugin\pluginoffer\pluginoffer.dll

Digital Signature
Signed by:
Alibaba (China) Network Technology Co.,Ltd.

Authority:
VeriSign, Inc.

Valid from:
3/29/2013 8:00:00 AM

Valid to:
5/29/2014 7:59:59 AM

Subject:
CN="Alibaba (China) Network Technology Co.,Ltd.", OU="Alibaba (China) Network Technology Co.,Ltd.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Alibaba (China) Network Technology Co.,Ltd.", L=Hangzhou, S=Zhejiang, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
71C704C81B7CCB678A96BD1F9A4384B2

File PE Metadata
Compilation timestamp:
1/8/2014 5:39:05 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:q92E+Uv/u08+N5lz9Rz6YqGQgNavWUWxdGpPYglj0UrnUwG1LnYQBY+u83j+kKLn:E2ERL5nnznYQHu83jDo019V4

Entry address:
0x6E70C

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, D2, FC, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 51, 53, 8B, 45, 0C, 83, C0, 0C, 89, 45, FC, 64, 8B, 1D, 00, 00, 00, 00, 8B, 03, 64, A3, 00, 00, 00, 00, 8B, 45, 08, 8B, 5D, 0C, 8B, 6D, FC, 8B, 63, FC, FF, E0, 5B, C9, C2, 08, 00, 58, 59, 87, 04, 24, FF, E0, 8B, FF, 55, 8B, EC, 51, 51, 53, 56, 57, 64, 8B, 35, 00, 00, 00, 00, 89, 75, FC, C7, 45, F8, 93, E7, 06, 10, 6A, 00, FF, 75, 0C, FF, 75, F8, FF...
 
[+]

Entropy:
6.4995

Code size:
555 KB (568,320 bytes)

Scan pluginoffer.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.