home

77f7595782c90038a4461d15b7005db0.dll

FFmpeg

深圳市为爱普信息技术有限公司

Publisher:
FFmpeg Project  (signed by 深圳市为爱普信息技术有限公司)

Product:
FFmpeg

Description:
FFmpeg postprocessing library

Version:
54.0.100

MD5:
77f7595782c90038a4461d15b7005db0

SHA-1:
82ca8c64381fae1e8cf2abd814f56dda2bc4b9ab

SHA-256:
e6c7254a5e8bf9fc859efb3a463035f571e9a0992135577c200cf8486180311d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 11:09:14 AM UTC  (today)

File size:
198.4 KB (203,136 bytes)

Product version:
3.0

Copyright:
Copyright (C) 2000-2016 FFmpeg Project

Original file name:
postproc-54.dll

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\77f7595782c90038a4461d15b7005db0.dll

Digital Signature
Signed by:
深圳市为爱普信息技术有限公司

Authority:
GlobalSign nv-sa

Valid from:
2/26/2016 10:20:32 AM

Valid to:
6/20/2016 11:09:33 AM

Subject:
CN=深圳市为爱普信息技术有限公司, OU=IT Dept., O=深圳市为爱普信息技术有限公司, L=Shenzhen, S=Guangdong, C=CN

Issuer:
CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121489EB7D6639A5B0CB949A9C319C024FE

File PE Metadata
Compilation timestamp:
2/29/2016 5:46:40 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
2.21

CTPH (ssdeep):
6144:SxxxxRxRw6dxxxxRxRw6x25cuixqtueVZhRkVaa6aa66BpwnVaa6aa665hIO/nW:SxxxxRxRw6dxxxxRxRw6xpui6ZLaaa6g

Entry address:
0x1058

Entry point:
55, 89, E5, 57, 56, 53, 83, EC, 2C, 8B, 75, 08, 8B, 5D, 0C, 8B, 7D, 10, 83, FB, 01, 74, 3D, 89, 7C, 24, 08, 89, 5C, 24, 04, 89, 34, 24, E8, 61, BF, 02, 00, 83, EC, 0C, 85, DB, 75, 19, 8B, 15, 00, 20, 03, 10, 85, D2, 0F, 84, 84, 00, 00, 00, 89, 45, E4, E8, 64, FF, FF, FF, 8B, 45, E4, 8D, 65, F4, 5B, 5E, 5F, C9, C2, 0C, 00, 8D, 76, 00, C7, 04, 24, 80, 00, 00, 00, E8, C4, C4, 02, 00, A3, 00, 20, 03, 10, 85, C0, 74, 63, C7, 00, 00, 00, 00, 00, A3, 04, 20, 03, 10, A1, 80, 01, 03, 10, 85, C0, 74, 14, 89, 7C, 24...
 
[+]

Code size:
178.5 KB (182,784 bytes)

The file 77f7595782c90038a4461d15b7005db0.dll has been seen being distributed by the following URL.

http://d.updater.i4.cn/i4toolupdate6/i4tools/.../77F7595782C90038A4461D15B7005DB0.dll

Scan 77f7595782c90038a4461d15b7005db0.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.