home

qqext.dll

Dynamic Link Library

qqext

Publisher:
qqext  (signed and verified)

Product:
Dynamic Link Library

Description:
DLL

Version:
1, 0, 2, 9

MD5:
556f05197837d6c2b148e2b645c08639

SHA-1:
3d11a02bbcf7558a8eb36c4651cb641a4f5a2bb8

SHA-256:
9d5f1d8ceadb8ce8eefbbc1d1491faddf28d5fcb0e9e2d8d255b3eb8ab568e81

Scanner detections:
11 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/16/2024 9:21:37 AM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
Trojan.Rogue
7.1.1

AVG
Generic35
2015.0.3606

Baidu Antivirus
Trojan.Win32.Taobho
4.0.3.1413

Bkav FE
W32.Clod7d5.Trojan
1.3.0.4613

Comodo Security
UnclassifiedMalware
17448

IKARUS anti.virus
Trojan.SuspectCRC
t3scan.2.2.29

K7 AntiVirus
Riskware
13.174.10509

McAfee
Artemis!556F05197837
5600.7262

Norman
Suspicious_Gen4.CFAIY
11.20140103

Vba32 AntiVirus
Trojan.Taobho
3.12.24.3

VIPRE Antivirus
Trojan.Win32.Generic
24414

File size:
393.4 KB (402,832 bytes)

Product version:
1, 0, 2, 9

Copyright:
版权所有 (C) 2011

Original file name:
DLL

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\qq2013beta2\bin\qqext\qqext.dll

Digital Signature
Signed by:
qqext

Authority:
qqext.com

Valid from:
1/1/2013 12:00:00 AM

Valid to:
12/31/2020 12:00:00 AM

Subject:
CN=qqext, E=qqext@hotmail.com

Issuer:
CN=qqext.com

Serial number:
CE5D5369247DB18342777B3AA2D57D80

File PE Metadata
Compilation timestamp:
1/19/2013 10:33:48 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:xsVA450ygHMefDE+P9/571RS65DNs2T3T3Gidm:xshEH/fg+N571HFT3T3Gidm

Entry address:
0x3756F

Entry point:
55, 8B, EC, 53, 8B, 5D, 08, 56, 8B, 75, 0C, 57, 8B, 7D, 10, 85, F6, 75, 09, 83, 3D, 70, B0, E5, 61, 00, EB, 26, 83, FE, 01, 74, 05, 83, FE, 02, 75, 22, A1, 74, 36, E5, 61, 85, C0, 74, 09, 57, 56, 53, FF, D0, 85, C0, 74, 0C, 57, 56, 53, E8, 15, FF, FF, FF, 85, C0, 75, 04, 33, C0, EB, 4E, 57, 56, 53, E8, AA, F3, FD, FF, 83, FE, 01, 89, 45, 0C, 75, 0C, 85, C0, 75, 37, 57, 50, 53, E8, F1, FE, FF, FF, 85, F6, 74, 05, 83, FE, 03, 75, 26, 57, 56, 53, E8, E0, FE, FF, FF, 85, C0, 75, 03, 21, 45, 0C, 83, 7D, 0C, 00...
 
[+]

Entropy:
6.4525

Developed / compiled with:
Microsoft Visual C++ 6.0

Code size:
252 KB (258,048 bytes)

Scan qqext.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.