home

7z.dll

7-Zip

Finger Power Technology Co., Ltd.

7za.dll is a stand alone plugin for the 7-Zip file archiver and extraction utility. The plugin is used by 3rd-party software to provide archiving functionality for 7z, ZIP and gzip formats and is recompiled by Finger Power Technology Co., Ltd.. The file has been seen being downloaded from download.kingoapp.com.
Publisher:
Igor Pavlov  (signed by Finger Power Technology Co., Ltd.)

Product:
7-Zip

Description:
7z Standalone Plugin

Version:
9.20

MD5:
e0fd0894815d3a81cf6e0259c2c1cb15

SHA-1:
7e92256c1476e0016f80d7607d2c2002ae02eceb

SHA-256:
ffdd538b0c30e76d8cd1241dba4e97f72c7cf1e6cbf302d7ed725f0d7b59ef9d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/5/2024 2:38:30 PM UTC  (today)

File size:
899 KB (920,544 bytes)

Product version:
9.20

Copyright:
Copyright (c) 1999-2010 Igor Pavlov

Original file name:
7za.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\kingo root\tools\7z.dll

Digital Signature
Signed by:
Finger Power Technology Co., Ltd.

Authority:
Symantec Corporation

Valid from:
5/12/2016 3:00:00 AM

Valid to:
6/9/2016 2:59:59 AM

Subject:
CN="Finger Power Technology Co., Ltd.", OU=Development, O="Finger Power Technology Co., Ltd.", L=Beijing, S=Beijing, C=CN

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
515817CA17803F8323889FF73ECF5385

File PE Metadata
Compilation timestamp:
11/18/2010 6:27:29 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
24576:LW+wsDaQw6DDz3qRyPnmGfrnvVUKueY8RmneWtJV:LasY6DwOBfrnvV7UeWt7

Entry address:
0x9AD87

Entry point:
55, 8B, EC, 53, 8B, 5D, 08, 56, 8B, 75, 0C, 57, 8B, 7D, 10, 85, F6, 75, 09, 83, 3D, D4, 3C, 0C, 10, 00, EB, 26, 83, FE, 01, 74, 05, 83, FE, 02, 75, 22, A1, 04, 65, 0C, 10, 85, C0, 74, 09, 57, 56, 53, FF, D0, 85, C0, 74, 0C, 57, 56, 53, E8, 15, FF, FF, FF, 85, C0, 75, 04, 33, C0, EB, 4E, 57, 56, 53, E8, EE, C9, F6, FF, 83, FE, 01, 89, 45, 0C, 75, 0C, 85, C0, 75, 37, 57, 50, 53, E8, F1, FE, FF, FF, 85, F6, 74, 05, 83, FE, 03, 75, 26, 57, 56, 53, E8, E0, FE, FF, FF, 85, C0, 75, 03, 21, 45, 0C, 83, 7D, 0C, 00...
 
[+]

Entropy:
6.4966

Developed / compiled with:
Microsoft Visual C++ 6.0

Code size:
654.5 KB (670,208 bytes)

The file 7z.dll has been seen being distributed by the following URL.

http://download.kingoapp.com/kingoroot/.../7z.dll

Scan 7z.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.