home

dywindowicon.dll

DyWindowIcon

Beijing Doyo Networking Technologies Ltd.

Publisher:
Doyo.cn  (signed by Beijing Doyo Networking Technologies Ltd.)

Product:
DyWindowIcon

Description:
DyWindow 动态链接库

Version:
1.0.1.36

MD5:
0f14ad3baf3d70363ed69a83ecad87ac

SHA-1:
35452451d2f059578ab719c953ab8597bb10ee87

SHA-256:
c171ce956618ba2f285278724214ae86a1d744a6c566cc05b2e16e5e0adf2362

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 3:03:42 AM UTC  (today)

File size:
182 KB (186,400 bytes)

Product version:
1.0.1.36

Copyright:
Doyo.cn 保留所有权利。

Original file name:
DyWindow.dll

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\dywindowicon.dll

Digital Signature
Signed by:
Beijing Doyo Networking Technologies Ltd.

Authority:
WoSign CA Limited

Valid from:
9/18/2014 3:26:41 PM

Valid to:
11/18/2015 3:26:41 PM

Subject:
CN=Beijing Doyo Networking Technologies Ltd., E=doyoservice@gmail.com, O=Beijing Doyo Networking Technologies Ltd., L=Beijing, S=Beijing, C=CN

Issuer:
CN=WoSign Class 3 Code Signing CA, O=WoSign CA Limited, C=CN

Serial number:
622102B9FFE48C4A0AFCA0298BFA626E

File PE Metadata
Compilation timestamp:
4/21/2015 2:02:37 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
3072:BhmoV8Y2kvmMDJSEsmt+HdEzrtZP+tM8NOnCY:jLdq9Ezrfh5

Entry address:
0x8653

Entry point:
83, 7C, 24, 08, 01, 75, 05, E8, EA, 54, 00, 00, FF, 74, 24, 04, 8B, 4C, 24, 10, 8B, 54, 24, 0C, E8, ED, FE, FF, FF, 59, C2, 0C, 00, 6A, 0C, 68, D0, 99, 01, 10, E8, 80, 1C, 00, 00, 6A, 0E, E8, 46, 11, 00, 00, 59, 83, 65, FC, 00, 8B, 75, 08, 8B, 4E, 04, 85, C9, 74, 2F, A1, 28, D5, 01, 10, BA, 24, D5, 01, 10, 89, 45, E4, 85, C0, 74, 11, 39, 08, 75, 2C, 8B, 48, 04, 89, 4A, 04, 50, E8, A7, ED, FF, FF, 59, FF, 76, 04, E8, 9E, ED, FF, FF, 59, 83, 66, 04, 00, C7, 45, FC, FE, FF, FF, FF, E8, 0A, 00, 00, 00, E8, 6F...
 
[+]

Entropy:
6.8064

Code size:
88 KB (90,112 bytes)

Scan dywindowicon.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.