home

pshook.dll

Sergey Moskalev

Publisher:
Sergey Moskalev  (signed and verified)

MD5:
dcafc4f36ea2862de32499583a2e14dc

SHA-1:
6369b4310b3bcece96c4c287fe948cd1f5fe3506

SHA-256:
68800564cacbbc3540c6a6216b96d919ff425c0384a2e2678c66969ac2907419

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/20/2024 4:50:44 AM UTC  (today)

File size:
15.7 KB (16,064 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\pshook.dll

Digital Signature
Signed by:
Sergey Moskalev

Authority:
The USERTRUST Network

Valid from:
3/31/2008 5:00:00 AM

Valid to:
4/1/2009 4:59:59 AM

Subject:
CN=Sergey Moskalev, OU=Punto, O=Sergey Moskalev, STREET=Bolshoy Kozikhinsky per. 23-36, L=Moscow, S=Moscow, PostalCode=123001, C=RU

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
00B1CB2687F16C261F6F369A200825C00C

File PE Metadata
Compilation timestamp:
5/19/2008 6:10:51 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
384:cWC3zbZ/DrCUpDxtpqRxLBceYJLhH55c2T:cWC3ZqUpDxtp0p+L555N

Entry address:
0x222F

Entry point:
8B, 44, 24, 08, 56, 33, F6, 2B, C6, 74, 3D, 48, 75, 60, FF, 74, 24, 08, FF, 15, 44, 30, 00, 08, 56, 56, 56, FF, 15, 40, 30, 00, 08, A3, 08, 40, 00, 08, 3B, C6, 75, 04, 33, C0, EB, 43, E8, BA, ED, FF, FF, 3B, C6, 74, F3, FF, 74, 24, 08, 8B, C8, E8, 2D, FE, FF, FF, 84, C0, 75, 28, EB, E2, E8, A0, ED, FF, FF, 3B, C6, 74, 07, 8B, C8, E8, 36, FE, FF, FF, A1, 08, 40, 00, 08, 3B, C6, 74, 07, 50, FF, 15, 3C, 30, 00, 08, 89, 35, 08, 40, 00, 08, 33, C0, 40, 5E, C2, 0C, 00, E8, 73, ED, FF, FF, 83, 7C, 24, 04, 00, FF...
 
[+]

Code size:
5.5 KB (5,632 bytes)

Scan pshook.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.