home

psmachine_64.dll

XiaoMa Update

成都海宇通电气自动化工程有限公司

Publisher:
XiaoMa Inc.  (signed by 成都海宇通电气自动化工程有限公司)

Product:
XiaoMa Update

Version:
1.3.99.0

MD5:
6559913f0ba0efb267190376d8684aa1

SHA-1:
3ace2623a2a8d614d6fd05ef089803c60dec4ed4

SHA-256:
2ea394a6796c7cd5aecd7efa434484726404132975408fe20142a420f26ec2fe

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 4:00:42 PM UTC  (today)

File size:
244.5 KB (250,392 bytes)

Product version:
1.3.99.0

Copyright:
Copyright 2017 XiaoMa Inc.

Original file name:
xmupdate.dll

File type:
Dynamic link library (Win64 DLL)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\psmachine_64.dll

Digital Signature
Signed by:
成都海宇通电气自动化工程有限公司

Authority:
WoSign CA Limited

Valid from:
5/6/2016 11:22:47 AM

Valid to:
6/6/2018 11:22:47 AM

Subject:
CN=成都海宇通电气自动化工程有限公司, O=成都海宇通电气自动化工程有限公司, L=成都市, S=四川省, C=CN

Issuer:
CN=WoSign Class 3 Code Signing CA, O=WoSign CA Limited, C=CN

Serial number:
4A10735F7BFEF63431117117B6A8D6E9

File PE Metadata
Compilation timestamp:
2/16/2017 8:02:56 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
14.0

Entry address:
0xAC48

Entry point:
48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 20, 49, 8B, F8, 8B, DA, 48, 8B, F1, 83, FA, 01, 75, 05, E8, 87, 03, 00, 00, 4C, 8B, C7, 8B, D3, 48, 8B, CE, 48, 8B, 5C, 24, 30, 48, 8B, 74, 24, 38, 48, 83, C4, 20, 5F, E9, 77, FE, FF, FF, CC, CC, CC, 40, 53, 48, 83, EC, 20, 48, 8B, D9, EB, 21, 48, 8B, CB, E8, A9, 57, 00, 00, 85, C0, 75, 12, 48, 83, FB, FF, 75, 07, E8, EA, 05, 00, 00, EB, 05, E8, C3, 05, 00, 00, 48, 8B, CB, E8, 2F, 40, 00, 00, 48, 85, C0, 74, D5, 48, 83, C4, 20, 5B, C3, 48, 89, 5C, 24...
 
[+]

Entropy:
6.0343

Code size:
100.5 KB (102,912 bytes)

Scan psmachine_64.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.