home

libEGL.dll

ANGLE libEGL Dynamic Link Library

Wei Liu

libEGL.dll is the ANGLE library provides runtime WebGL and other OpenGL content by translating OpenGL calls to DirectX calls and is recompiled by Wei Liu. Note, this is a common distributed file and although it has been detected it might not be a threat is un-coupled from its distribution source.
Publisher:
Wei Liu  (signed and verified)

Product:
ANGLE libEGL Dynamic Link Library

Version:
2.1.0.unknown hash

MD5:
4ceb01f450d5c1016273f6d12f643282

SHA-1:
37f0724eff20f6b913de377f0291b697bf5c56f5

SHA-256:
9d87d60f15425143b4273e96314834f52bf2ffed088429d6ad5c02e18852cfb2

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/16/2024 2:26:02 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Elex (M)
16.12.12.10

File size:
79.4 KB (81,280 bytes)

Product version:
2.1.0.unknown hash

Copyright:
Copyright (C) 2015 Google Inc.

Original file name:
libEGL.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\eastfat\application\libegl.dll

Digital Signature
Signed by:
Wei Liu

Authority:
thawte, Inc.

Valid from:
7/20/2016 7:00:00 AM

Valid to:
4/2/2017 6:59:59 AM

Subject:
CN=Wei Liu, OU=Individual Developer, O=No Organization Affiliation, L=Beijing, S=Beijing, C=CN

Issuer:
CN=thawte SHA256 Code Signing CA, O="thawte, Inc.", C=US

Serial number:
7CF8591D653BD8FBE2B48518F7DB2262

File PE Metadata
Compilation timestamp:
7/20/2016 9:25:14 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
14.0

CTPH (ssdeep):
1536:f2dQzYeYattDf1PYBn5Zj3IsWChcdGWOvurjyhr1K:f9YKf1PsDDpQGjkjY1

Entry address:
0x17E1

Entry point:
55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 35, 03, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, B1, FE, FF, FF, 83, C4, 0C, 5D, C2, 0C, 00, 55, 8B, EC, 8B, 45, 08, 56, 8B, 48, 3C, 03, C8, 0F, B7, 41, 14, 8D, 51, 18, 03, D0, 0F, B7, 41, 06, 6B, F0, 28, 03, F2, 3B, D6, 74, 19, 8B, 4D, 0C, 3B, 4A, 0C, 72, 0A, 8B, 42, 08, 03, 42, 0C, 3B, C8, 72, 0C, 83, C2, 28, 3B, D6, 75, EA, 33, C0, 5E, 5D, C3, 8B, C2, EB, F9, E8, 3F, 07, 00, 00, 85, C0, 75, 03, 32, C0, C3, 64, A1, 18, 00, 00, 00, 56, BE, A8, 27, 01, 10, 8B...
 
[+]

Entropy:
6.4072

Developed / compiled with:
Microsoft Visual C++

Code size:
38.5 KB (39,424 bytes)

Scan libEGL.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.