home

ProcessHacker.Native.dll

Process Hacker

wj32

Publisher:
wj32

Product:
Process Hacker

Description:
Process Hacker Native Library

Version:
1.12.0.0

MD5:
55a30f66229da20536ae9c922c9244d1

SHA-1:
641e98b929fb1b38b8b1d355f4fd9ca7fc3f28d2

SHA-256:
b9b0972c1291ee8f515cfe5d2a6ca179ab88be15ab7938da4212ce3db3f1916a

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/18/2024 9:12:01 AM UTC  (today)

File size:
554 KB (567,296 bytes)

Product version:
1.12.0.0

Copyright:
Licensed under the GNU GPL, v3.

Original file name:
ProcessHacker.Native.dll

File type:
Dynamic link library (Win32 DLL)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\processhacker.native.dll

File PE Metadata
Compilation timestamp:
10/24/2010 3:29:08 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:NomnF/EBmhMY9ON1ab4r8JqU34M4NPvxyJNi0fIcMB+5l8U27jVy4H3y2k947UG2:NVe2MYQL5bk3uhdZkHMafpQlv

Entry address:
0x8BD6E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
551.5 KB (564,736 bytes)

The file ProcessHacker.Native.dll has been seen being distributed by the following 5 URLs.

http://download2109.mediafire.com/qvjei555x0fg/.../ProcessHacker.Native.dll

http://download2109.mediafire.com/8zeuqdi2fnjg/.../ProcessHacker.Native.dll

http://download2109.mediafire.com/2kcc8i6iabvg/.../ProcessHacker.Native.dll

http://download2118.mediafire.com/vsj4y9jg3lfg/.../ProcessHacker.Native.dll

http://download883.mediafire.com/rxumt3xukiqg/.../ProcessHacker.Native.dll

Scan ProcessHacker.Native.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.