home

libEGL.dll

ANGLE libEGL Dynamic Link Library

Wei Liu

libEGL.dll is the ANGLE library provides runtime WebGL and other OpenGL content by translating OpenGL calls to DirectX calls and is recompiled by Wei Liu. Note, this is a common distributed file and although it has been detected it might not be a threat is un-coupled from its distribution source.
Publisher:
Wei Liu  (signed and verified)

Product:
ANGLE libEGL Dynamic Link Library

Version:
2.1.0.unknown hash

MD5:
aad146221911178c2c88084642be5ed8

SHA-1:
db9bea4d9e2f1f4f4251b9874e481d8c1530e0fa

SHA-256:
53da911a429293b023f2262ac3fb9ba524e419ccfdd6b30b8ceef81eea188f59

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/16/2024 12:28:46 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Elex (M)
16.12.12.2

File size:
79.4 KB (81,280 bytes)

Product version:
2.1.0.unknown hash

Copyright:
Copyright (C) 2015 Google Inc.

Original file name:
libEGL.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\wefat\application\libegl.dll

Digital Signature
Signed by:
Wei Liu

Authority:
thawte, Inc.

Valid from:
6/1/2016 7:00:00 AM

Valid to:
4/2/2017 6:59:59 AM

Subject:
CN=Wei Liu, OU=Individual Developer, O=No Organization Affiliation, L=Beijing, S=Beijing, C=CN

Issuer:
CN=thawte SHA256 Code Signing CA, O="thawte, Inc.", C=US

Serial number:
371A7AF7094369957BA75F4229970F3C

File PE Metadata
Compilation timestamp:
6/15/2016 7:44:37 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
14.0

CTPH (ssdeep):
1536:Q2dQzYeYattDf1PYBn5Zj3IsWChcdGGOJurjyhrlw:Q9YKf1PsDDpQGz+jYl

Entry address:
0x17E1

Entry point:
55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 35, 03, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, B1, FE, FF, FF, 83, C4, 0C, 5D, C2, 0C, 00, 55, 8B, EC, 8B, 45, 08, 56, 8B, 48, 3C, 03, C8, 0F, B7, 41, 14, 8D, 51, 18, 03, D0, 0F, B7, 41, 06, 6B, F0, 28, 03, F2, 3B, D6, 74, 19, 8B, 4D, 0C, 3B, 4A, 0C, 72, 0A, 8B, 42, 08, 03, 42, 0C, 3B, C8, 72, 0C, 83, C2, 28, 3B, D6, 75, EA, 33, C0, 5E, 5D, C3, 8B, C2, EB, F9, E8, 3F, 07, 00, 00, 85, C0, 75, 03, 32, C0, C3, 64, A1, 18, 00, 00, 00, 56, BE, A8, 27, 01, 10, 8B...
 
[+]

Entropy:
6.4072

Developed / compiled with:
Microsoft Visual C++

Code size:
38.5 KB (39,424 bytes)

Scan libEGL.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.