a2hooks64.dll

Emsisoft Anti-Malware

Emsisoft Ltd

This is installed with Emsisoft Internet Security.
Publisher:
Emsisoft Ltd  (signed and verified)

Product:
Emsisoft Anti-Malware

Description:
Emsisoft Anti-Malware Behavior Blocker user mode hooks

Version:
10.0.0.177

MD5:
cf815e649b9f13cd0479b4f69cf40e6e

SHA-1:
15c194515cd1257fdbc540818462e935bd3ef7fa

SHA-256:
1894225c724cfbc97963b98b330073d3b36bc7205e44dd7cd2199985c76afaca

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 5:23:33 AM UTC  (today)

File size:
375.3 KB (384,296 bytes)

Product version:
10.0

Copyright:
Copyright © 2015 Emsisoft Ltd. All rights reserved.

Original file name:
a2hooks

File type:
Dynamic link library (Win64 DLL)

Language:
English (United States)

Common path:
C:\windows\temp\emonr\a2hooks64.dll

Digital Signature
Signed by:

Authority:
DigiCert Inc

Valid from:
4/27/2015 7:00:00 PM

Valid to:
5/2/2018 7:00:00 AM

Subject:
CN=Emsisoft Ltd, O=Emsisoft Ltd, L=Nelson, C=NZ

Issuer:
CN=DigiCert SHA2 High Assurance Code Signing CA, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
03861D3692352B4BA4D301FCA41F14AD

File PE Metadata
Compilation timestamp:
12/15/2015 7:43:23 AM

OS version:
6.0

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
6144:5Y2XZC2BbyrTGnRnsHt88n6v0ETWkPgG1STY2mb7gWY:CP2BbyrTGCNb6vR+m9Y

Entry address:
0x22990

Entry point:
48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 20, 49, 8B, F8, 8B, DA, 48, 8B, F1, 83, FA, 01, 75, 05, E8, EB, 52, 00, 00, 4C, 8B, C7, 8B, D3, 48, 8B, CE, 48, 8B, 5C, 24, 30, 48, 8B, 74, 24, 38, 48, 83, C4, 20, 5F, E9, 03, 00, 00, 00, CC, CC, CC, 48, 8B, C4, 48, 89, 58, 20, 4C, 89, 40, 18, 89, 50, 10, 48, 89, 48, 08, 56, 57, 41, 56, 48, 83, EC, 50, 49, 8B, F0, 8B, DA, 4C, 8B, F1, BA, 01, 00, 00, 00, 89, 50, B8, 85, DB, 75, 0F, 39, 1D, 14, 53, 03, 00, 75, 07, 33, C0, E9, D2, 00, 00, 00, 8D, 43, FF...
 
[+]

Entropy:
5.6608

Code size:
197.5 KB (202,240 bytes)

The file a2hooks64.dll has been discovered within the following program.

Emsisoft Internet Security  by Emsisoft GmbH
www.emsisoft.com
9% remove it
 
Powered by Should I Remove It?

Scan a2hooks64.dll - Powered by Reason Core Security