home

gdiplus.dll

Microsoft GDI+

Shanghai Best Oray Information Technology Co., Ltd.

Publisher:
Microsoft Corporation  (signed by Shanghai Best Oray Information Technology Co., Ltd.)

Product:
Microsoft® Windows® Operating System

Description:
Microsoft GDI+

Version:
5.2.3790.3959 (srv03_sp2_rtm.070216-1710)

MD5:
be346737631df5dfd41f5018eb837894

SHA-1:
0a43507fa5de100313c4a0989eb6c90524feacf4

SHA-256:
c5d661c4ca640f8e4774243a14502ce9ce8fad07cab10ac3bc558e539fab9346

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/28/2024 10:58:45 AM UTC  (today)

File size:
1.7 MB (1,735,080 bytes)

Product version:
5.2.3790.3959

Copyright:
© Microsoft Corporation. All rights reserved.

Original file name:
gdiplus

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\gdiplus.dll

Digital Signature
Signed by:
Shanghai Best Oray Information Technology Co., Ltd.

Authority:
Symantec Corporation

Valid from:
4/26/2016 8:00:00 AM

Valid to:
4/27/2017 7:59:59 AM

Subject:
CN="Shanghai Best Oray Information Technology Co., Ltd.", OU=IT, O="Shanghai Best Oray Information Technology Co., Ltd.", L=Shanghai, S=Shanghai, C=CN, SERIALNUMBER=310110000391816, OID.2.5.4.15=Private Organization, OID.1.3.6.1.4.1.311.60.2.1.1=Shanghai, OID.1.3.6.1.4.1.311.60.2.1.2=Shanghai, OID.1.3.6.1.4.1.311.60.2.1.3=CN

Issuer:
CN=Symantec Class 3 Extended Validation Code Signing CA - G2, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
2405110F883EC95CFD9AA079DCDD48B5

File PE Metadata
Compilation timestamp:
2/17/2007 11:27:31 PM

OS version:
5.2

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
7.10

Entry address:
0x6CD8

Entry point:
8B, FF, 55, 8B, EC, 53, 8B, 5D, 08, 56, 8B, 75, 0C, 85, F6, 57, 8B, 7D, 10, 0F, 84, 4F, 09, 02, 00, 83, FE, 01, 0F, 85, 52, 09, 02, 00, A1, 2C, 20, 7A, 4C, 85, C0, 0F, 85, 1D, A1, 07, 00, 57, 56, 53, E8, C5, FE, FF, FF, 85, C0, 0F, 84, 1A, A1, 07, 00, 57, 56, 53, E8, 23, 00, 00, 00, 83, FE, 01, 89, 45, 0C, 0F, 85, 39, 09, 02, 00, 85, C0, 0F, 84, 05, A1, 07, 00, 8B, 45, 0C, 5F, 5E, 5B, 5D, C2, 0C, 00, 90, 90, 90, 90, 90, 6A, 08, 68, 88, 6D, 62, 4C, E8, 22, FE, FF, FF, 33, F6, 46, 8B, 45, 0C, 83, E8, 00, 0F...
 
[+]

Entropy:
6.7467

Code size:
1.5 MB (1,576,960 bytes)

Scan gdiplus.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.