hgehelp.dll

杭州浮云网络科技有限公司

Publisher:
杭州浮云网络科技有限公司  (signed and verified)

MD5:
87da9b522e1c22dad17a87b363158fd4

SHA-1:
17f3255944119012e45e00d3facf065185a1e75a

SHA-256:
c5791e46da34132d354c635c3b9c59d367e7c0b4e71bca7a84c53a63a2306412

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/5/2024 10:21:28 PM UTC  (today)

Scan engine
Detection
Engine version

Trend Micro House Call
Suspicious_GEN.F47V0812
7.2.129

File size:
441 KB (451,536 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\91ygame\hgehelp.dll

Digital Signature
Authority:
WoSign eCommerce Services Limited

Valid from:
9/16/2013 5:21:20 PM

Valid to:
9/19/2014 12:35:54 AM

Subject:
E=fuyun@91y.com, CN=杭州浮云网络科技有限公司, O=杭州浮云网络科技有限公司, L=杭州市, S=浙江省, C=CN

Issuer:
CN=WoSign Class 3 Code Signing CA, O=WoSign eCommerce Services Limited, C=CN

Serial number:
0C1F891CECDC6B

File PE Metadata
Compilation timestamp:
7/14/2014 10:34:44 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:kdYhGcmFmyey3Bz0uXz2dGTyzWKk2+RwIEQ/7rrh8qsdt7APmwtR5m:nvuXzmGfgqwXWR5m

Entry address:
0x45C7D

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 89, 03, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, CC, FE, FF, FF, 59, 5D, C2, 0C, 00, FF, 25, F8, B1, 04, 10, CC, CC, 68, 01, 5D, 04, 10, 64, FF, 35, 00, 00, 00, 00, 8B, 44, 24, 10, 89, 6C, 24, 10, 8D, 6C, 24, 10, 2B, E0, 53, 56, 57, A1, 48, 9C, 06, 10, 31, 45, FC, 33, C5, 50, 89, 65, E8, FF, 75, F8, 8B, 45, FC, C7, 45, FC, FE, FF, FF, FF, 89, 45, F8, 8D, 45, F0, 64, A3, 00, 00, 00, 00, C3, 8B, 4D, F0, 64, 89, 0D, 00, 00, 00, 00, 59, 5F, 5F, 5E, 5B, 8B...
 
[+]

Entropy:
6.5564

Code size:
294.5 KB (301,568 bytes)

Scan hgehelp.dll - Powered by Reason Core Security