home

common.DLL

ProfiCAD

Václav Jedlička

Publisher:
www.proficad.com  (signed by Václav Jedlička)

Product:
ProfiCAD

Description:
common DLL

Version:
7.6.5.0

MD5:
f109e3c25326f7a90704eaca52052eae

SHA-1:
3229ce96e3f4480c16eada32ef7883ff0efa97d5

SHA-256:
eae5b9141a478ccacd88b2913a761e896b0f691ee5cdaa3d0bcee5db7d2bd679

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 12:27:06 AM UTC  (today)

File size:
2.3 MB (2,426,200 bytes)

Product version:
7.6.5.0

Copyright:
Copyright © 1996 - 2014

Original file name:
common.DLL

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\7\common.dll

Digital Signature
Signed by:
Václav Jedlička

Authority:
Thawte, Inc.

Valid from:
8/2/2012 6:00:00 PM

Valid to:
8/3/2014 5:59:59 PM

Subject:
CN=Václav Jedlička, OU=Software, O=Václav Jedlička, L=Praha 5, S=Česká republika, C=CZ

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
675E8C7BB2F5311E0E7C854B4EE55F3B

File PE Metadata
Compilation timestamp:
5/12/2014 9:40:42 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
24576:Ld830W4eCcF0tkPkCA4aQoC0ioaAFXSfPZQEi7fzRtvIfoPbXCABViWGYFMBggJ7:OYeNFhkZf5SCd0rAqxeWZFToBkLK7Wf

Entry address:
0x19901F

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 05, 06, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, CC, FE, FF, FF, 59, 5D, C2, 0C, 00, FF, 25, 64, B3, 1A, 10, FF, 25, 60, B3, 1A, 10, FF, 25, 5C, B3, 1A, 10, FF, 25, 58, B3, 1A, 10, FF, 25, 54, B3, 1A, 10, FF, 25, 50, B3, 1A, 10, FF, 25, 4C, B3, 1A, 10, FF, 25, 48, B3, 1A, 10, FF, 25, 44, B3, 1A, 10, FF, 25, 40, B3, 1A, 10, FF, 25, 3C, B3, 1A, 10, FF, 25, 38, B3, 1A, 10, FF, 25, 34, B3, 1A, 10, FF, 25, 30, B3, 1A, 10, FF, 25, 2C, B3, 1A, 10, FF, 25, 28...
 
[+]

Entropy:
6.7211

Code size:
1.7 MB (1,743,360 bytes)

The file common.DLL has been seen being distributed by the following URL.

http://upd.proficad.com/7/.../common.dll

Scan common.DLL - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.