home

SetupDll.dll

SetupDll

Feng Shichun

Publisher:
Microsoft  (signed by Feng Shichun)

Product:
SetupDll

Version:
1.00

MD5:
3c8f0069bf008352884f38a924d2fb65

SHA-1:
5476dad0255b99be2559b0931dfe93eca5cf3a5d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 4:34:14 PM UTC  (today)

File size:
123.5 KB (126,512 bytes)

Product version:
1.00

Original file name:
SetupDll.dll

File type:
Dynamic link library (Win32 DLL)

Language:
Chinesisch (VR China)

Common path:
C:\Documents and Settings\{user}\Local settings\temp\{random}.tmp\setupdll.dll

Digital Signature
Signed by:
Feng Shichun

Authority:
WoSign CA Limited

Valid from:
4/21/2014 10:47:25 AM

Valid to:
4/22/2015 10:47:25 AM

Subject:
CN=Feng Shichun, E=1367024804@qq.com, L=璧山县, S=重庆市, C=CN

Issuer:
CN=WoSign Class 2 Code Signing CA, O=WoSign CA Limited, C=CN

Serial number:
5FF7EE39E3BE57C3E7AD7791E43FC7A2

Registration
CLSID:
{09BE322B-7403-4DE1-94DF-3266FE40990B}

ProgID:
SetupDll.Core

COM registered:
Yes

File PE Metadata
Compilation timestamp:
4/22/2014 3:37:27 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
3072:cvQqjlVTwQchYKRMowXC4Eh3R/ufdDeS8S:cRbwQKcEhB/uT

Entry address:
0x1B8C

Entry point:
5A, 68, C8, B0, 01, 11, 68, CC, B0, 01, 11, 52, E9, E7, FF, FF, FF, 00, 00, 00, 48, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 50, 3B, 3A, E8, C8, 25, 2E, 4A, 8C, 3B, 02, 38, 3D, 1D, 4C, E8, 00, 00, 00, 00, 00, 00, 1C, 00, 00, 00, 00, 00, C0, A7, 55, 02, 53, 65, 74, 75, 70, 44, 6C, 6C, 00, 07, 41, 00, BC, CB, 56, 02, 00, 00, 00, 00, 00, 00, 00, 00, A8, 00, 00, 00, 90, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 07, 00, 00, 00, 2B, 32, BE, 09, 03, 74, E1, 4D, 94, DF, 32, 66, FE, 40, 99, 0B...
 
[+]

Developed / compiled with:
Microsoft Visual Basic v6.0

Code size:
96 KB (98,304 bytes)

Automation Object
CLSID:
{09BE322B-7403-4DE1-94DF-3266FE40990B}

CLSID name:
SetupDll.Core


Scan SetupDll.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.