installoptions.dll

Evgeni Shmakov

Publisher:
Evgeni Shmakov  (signed and verified)

MD5:
967c8c9d2910870a4eba6b8826ade45c

SHA-1:
b66634b56f581c24066c2ef2b612f04d7607b01b

SHA-256:
d2fd1cad0db634bd3c7733280c0369777a93e4c46f7a17c99ed219c40a6dc139

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 6:45:25 PM UTC  (today)

File size:
18.6 KB (19,064 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\installoptions.dll

Digital Signature
Signed by:

Authority:
StartCom Ltd.

Valid from:
3/23/2012 2:04:04 AM

Valid to:
3/23/2014 7:58:21 PM

Subject:
E=evgeni@neosoft-tools.com, CN=Evgeni Shmakov, L=Yekaterinburg, S=Sverdlovsk Oblast, C=RU, Description=69m13gixZc30Ix8f

Issuer:
CN=StartCom Class 2 Primary Intermediate Object CA, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL

Serial number:
059A

File PE Metadata
Compilation timestamp:
12/5/2009 6:50:12 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
384:o6UdHXcIiY535zBt2jw+BEnboXVVPa2zlw:jU5coPz/200EnboXVVPa2q

Entry address:
0x29C8

Entry point:
8B, 44, 24, 04, A3, D8, 67, 00, 10, 33, C0, 40, C2, 0C, 00, 53, 56, 57, 8B, 7C, 24, 10, 33, DB, 39, 1F, 74, 1F, 8B, C7, 8B, F7, FF, 30, FF, 74, 24, 18, FF, 15, 3C, 30, 00, 10, 85, C0, 74, 13, 83, C6, 08, 43, 8B, C6, 83, 3E, 00, 75, E5, 33, C0, 5F, 5E, 5B, C2, 08, 00, 8B, 44, DF, 04, EB, F4, 53, 55, 56, 8B, 74, 24, 14, 57, 33, ED, 8B, FE, 8A, 1E, 80, FB, 7C, 74, 0F, 84, DB, 74, 0B, 56, FF, 15, 04, 31, 00, 10, 8B, F0, EB, EA, 80, 26, 00, 57, FF, 74, 24, 18, E8, 97, FF, FF, FF, 0B, E8, 88, 1E, 84, DB, 74, 03...
 
[+]

Entropy:
6.1456

Code size:
7 KB (7,168 bytes)

Scan installoptions.dll - Powered by Reason Core Security