psapi.dll

Microsoft Windows NT Operating System

Microsoft Corporation

Scan psapi.dll - Powered by Reason Core Security
Publisher:
Microsoft Corporation

Product:
Microsoft(R) Windows NT(TM) Operating System

Description:
Process Status Helper

Version:
4.00

MD5:
ff46ec96b46bac3481685ec5d5eacd28

SHA-1:
982c776c7b4b24efc670d530b3bd9e2cf849e53c

SHA-256:
707da63dd146e2062a5bff9b4c4d6bba266ab2b56700e4e677b9bbe8acb47aa0

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/7/2016 11:26:21 PM UTC  (today)

File size:
17.8 KB (18,192 bytes)

Product version:
4.00

Copyright:
Copyright (C) Microsoft Corp. 1981-1996

Original file name:
PSAPI

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\broderbund\photo organizer\psapi.dll

File PE Metadata
Compilation timestamp:
11/2/1998 3:13:14 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
3.10

CTPH (ssdeep):
384:DvZNSvc+OKKGeUfkFFY2AmcGDrbgZWZkYWO:Dbr+rfkFFFAobgH

Entry address:
0x2837

Entry point:
8B, 44, 24, 08, 85, C0, 74, 07, 83, F8, 01, 74, 1B, EB, 3F, 64, A1, 18, 00, 00, 00, 8B, 40, 30, 8B, 48, 10, F6, 41, 08, 02, 74, 2D, E8, 93, F7, FF, FF, EB, 26, FF, 74, 24, 04, FF, 15, 44, 30, F5, 1F, 64, A1, 18, 00, 00, 00, 8B, 40, 30, 8B, 48, 10, F6, 41, 08, 02, 74, 0A, E8, D9, 00, 00, 00, E8, 41, F1, FF, FF, B0, 01, C2, 0C, 00, 55, 33, C0, 8B, EC, B9, 08, 00, 00, 00, 83, EC, 20, 56, 57, 8B, 75, 0C, 8D, 7D, E0, F3, AB, 8A, 16, 46, 8A, C2, 8A, CA, C0, E8, 03, 80, E1, 07, 0F, B6, F8, B0, 01, D2, E0, 08, 44...
 
[+]

Entropy:
5.1707

Code size:
8 KB (8,192 bytes)

Scan psapi.dll - Powered by Reason Core Security