home

uploadimg.dll

重庆话语科技有限公司

Publisher:
重庆话语科技有限公司  (signed and verified)

MD5:
83af55acdff7b9216f7aebd5a30a5c37

SHA-1:
310deff26c4ba1b428dd287a51cce89853b21148

SHA-256:
9a198a41bec4854d08e01c5a8dd2224ff5fb05da8337ff117da00c6254fc7c17

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/5/2024 10:41:50 AM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
Adware.Weiduan.11
9.0.1.05190

File size:
252.6 KB (258,680 bytes)

File type:
Dynamic link library (Win32 DLL)

Digital Signature
Signed by:
重庆话语科技有限公司

Authority:
Thawte, Inc.

Valid from:
7/19/2013 8:00:00 AM

Valid to:
9/18/2014 7:59:59 AM

Subject:
CN=重庆话语科技有限公司, OU=酷屏项目部, O=重庆话语科技有限公司, L=重庆, S=重庆, C=CN

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
7237ACBBEF66317B1DB46C898E1F3ABE

File PE Metadata
Compilation timestamp:
12/20/2013 7:53:13 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
10.0

CTPH (ssdeep):
6144:H35F7rr68UXjsCXeMI2TyPRH60w0gd62F:T7rr68w4COMhTyx60w0J2F

Entry address:
0x171CC

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 3B, AF, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, FF, 35, 98, D2, 03, 10, FF, 15, 78, 30, 03, 10, 85, C0, 74, 02, FF, D0, 6A, 19, E8, D0, AF, 00, 00, 6A, 01, 6A, 00, E8, 46, 1D, 00, 00, 83, C4, 0C, E9, 0B, 1D, 00, 00, 8B, FF, 55, 8B, EC, 56, FF, 35, 98, D2, 03, 10, FF, 15, 78, 30, 03, 10, FF, 75, 08, 8B, F0, FF, 15, 74, 30, 03, 10, A3, 98, D2, 03, 10, 8B, C6, 5E, 5D, C3, FF, 35, 98, D2, 03, 10, FF, 15, 78, 30, 03, 10...
 
[+]

Entropy:
6.5563

Code size:
199.5 KB (204,288 bytes)

Scan uploadimg.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.