home

vm8011.dll

Vimicro Coinstaller

Hanwang Technology Co., LTD

Publisher:
Vimicro Corporation  (signed by Hanwang Technology Co., LTD)

Product:
Vimicro Coinstaller

Description:
VMUVC.DLL

Version:
3015, 2000, 3001,10

MD5:
4588ae79069370f4ad52a145a1f0ac6f

SHA-1:
891617614d2b63513db0c80e8fa748ec09fdc7dd

SHA-256:
24c3b7bdc4f2c6813bf1e599436044eace62eb40537daa500c648dcf24b69026

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/25/2024 9:53:01 PM UTC  (today)

Scan engine
Detection
Engine version

AegisLab AV Signature
Packer.W32.Katusha.lTVU
2.1.4+

File size:
17.4 KB (17,824 bytes)

Product version:
3015, 2000, 3001,10

Copyright:
Vimicro Corporation. All rights reserved.

Original file name:
VMUVC.DLL

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\{409e8c24-4886-44af-867a-0f24ff4ba5c4}\win7\x64\vm8011.dll

Digital Signature
Signed by:
Hanwang Technology Co., LTD

Authority:
VeriSign, Inc.

Valid from:
9/15/2009 8:00:00 AM

Valid to:
9/16/2010 7:59:59 AM

Subject:
CN="Hanwang Technology Co., LTD", OU="PC ", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Hanwang Technology Co., LTD", L=Beijing, S=Beijing, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
73E166392FB07D803FCFE9B6EDCB62A7

File PE Metadata
Compilation timestamp:
2/27/2008 4:51:50 PM

OS version:
5.2

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
7.10

Entry address:
0x25FE

Entry point:
83, 7C, 24, 08, 01, 75, 0F, FF, 74, 24, 04, FF, 15, 0C, 10, 00, 02, E8, 06, 00, 00, 00, 33, C0, 40, C2, 0C, 00, 55, 8B, EC, 83, EC, 10, A1, 44, 30, 00, 02, 85, C0, 74, 07, 3D, 4E, E6, 40, BB, 75, 6E, 56, 8D, 45, F8, 50, FF, 15, 1C, 10, 00, 02, 8B, 75, FC, 33, 75, F8, FF, 15, 18, 10, 00, 02, 33, F0, FF, 15, 14, 10, 00, 02, 33, F0, FF, 15, 08, 10, 00, 02, 33, F0, 8D, 45, F0, 50, FF, 15, 44, 10, 00, 02, 8B, 45, F4, 33, 45, F0, 33, F0, 89, 35, 44, 30, 00, 02, 75, 0A, C7, 05, 44, 30, 00, 02, 4E, E6, 40, BB, 68...
 
[+]

Entropy:
6.0702

Code size:
8 KB (8,192 bytes)

Scan vm8011.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.