Gridinsoft Logo

The WSCaptureHook.dll (WSCaptureHook 动态链接库) File Analysis

Updated 3 months ago
Checked by Malware Check
WSCaptureHook.dll

Technical Analysis

File Name WSCaptureHook.dll
File Type
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
Scanner Version 1.0.226.174
Database Version 2025-10-03 07:00:27 UTC

Clean File

No threats detected by our scanner

0%
Detection Rate
344,280
File Size (bytes)
2025-10-03
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
bc694492501a80eebd232633641a17fb
SHA1
2429f44b32481b93b41188b8d4b0cb0513568679
SHA256
6b61a4c28ee40cd32a8d58e0550b0db55b56efbb615551d5c7927d1b6f006069
SHA512
da0038ae69aeb374e965ab7457efe30168729aef5920e976784cfc87726b0e0cce0ab62ef34fcf0f13a11a6f859f35b16896881abf946031d5ec74d9c697e034
ImpHash
148bbf0e88f618992a761dd0e810d52b

PE Analysis

Basic Information

Image Base 0x10000000
Entry Point 0x10020652
Compilation Time 2017-04-24 09:37:03
Checksum 0x0005afb7 (Actual: 0x0005afb7)
OS Version 6.0
PEiD Signatures PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
PDB Path E:\Work\StandOnDecode4.2.5_FilmoraScreen\Source\SDK\OBS-master\rundir\pdb32\WSCaptureHook.pdb
Digital Signature OK
Imports 5 libraries
PSAPI, KERNEL32, USER32, GDI32, SHELL32
Exports 1 functions
Resources 2 Resources
Sections 5 Sections

Version Information

FileDescription WSCaptureHook 动态链接库
FileVersion 4, 2, 7, 15
InternalName WSCaptureHook
LegalCopyright Copyright (C) 2017
OriginalFilename WSCaptureHook.dll
ProductName WSCaptureHook 动态链接库
ProductVersion 4, 2, 7, 15
Translation 0x0804 0x04b0

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 231,010 bytes 231,424 bytes 6.62 (Compressed) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 70C61A759640DB0B0A15BAA84089B15E
.rdata 0x0003a000 62,758 bytes 62,976 bytes 5.22 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 502A39951B0094C9EC3E738F5FE3CF66
.data 0x0004a000 19,400 bytes 8,192 bytes 4.29 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 34929F653964BD8956D04C3B43E8E2D5
.rsrc 0x0004f000 1,248 bytes 1,536 bytes 3.77 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ D292980E0317538AF6BA999B16C4EB34
.reloc 0x00050000 17,804 bytes 17,920 bytes 6.73 (Compressed) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ CB52B80555CBF510FE0B995C34E68BE3
Entropy Analysis Alert

2 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 2 (1,081 bytes)
Resource Type Count Total Size Percentage
RT_VERSION 1 700 bytes
64.8%
RT_MANIFEST 1 381 bytes
35.2%

Certificate Chain Analysis

Certificate Information
Product WSCaptureHook 动态链接库
Description WSCaptureHook 动态链接库
File Version 4, 2, 7, 15
Original Name WSCaptureHook.dll
Signing Date 09:24 AM 08/18/2025 (145 days ago)
Verification Status Signed
Signers Wondershare Technology Group Co.,Ltd; DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1; DigiCert Trusted Root G4; DigiCert
Counter Signers DigiCert SHA256 RSA4096 Timestamp Responder 2025 1; DigiCert Trusted G4 TimeStamping RSA4096 SHA256 2025 CA1; DigiCert Trusted Root G4; DigiCert
Internal Name WSCaptureHook
Copyright Copyright (C) 2017
Certificate Chain Summary
DigiCert Trusted Root G4 #1 Primary
Validity Period: 2022-08-01 00:00:00 → 2031-11-09 23:59:59
Signature Algorithm: sha384RSA
Serial Number: 0E 9B 18 8E F9 D0 2D E7 EF DB 50 E2 08 40 18 5A
DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1 #2 Chain
Validity Period: 2021-04-29 00:00:00 → 2036-04-28 23:59:59
Signature Algorithm: sha384RSA
Serial Number: 08 AD 40 B2 60 D2 9C 4C 9F 5E CD A9 BD 93 AE D9
DigiCert Trusted G4 TimeStamping RSA4096 SHA256 2025 CA1 #3 Chain
Validity Period: 2025-05-07 00:00:00 → 2038-01-14 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 0D C7 AC 57 05 FF 21 99 2E 40 43 22 0C 3A 49 86
DigiCert SHA256 RSA4096 Timestamp Responder 2025 1 #4 Chain
Validity Period: 2025-06-04 00:00:00 → 2036-09-03 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 0A 80 EF 18 4B 8D F1 05 82 D1 C4 76 A7 95 74 68
Wondershare Technology Group Co.,Ltd #5 Chain
Validity Period: 2025-04-03 00:00:00 → 2028-04-07 23:59:59
Signature Algorithm: sha256RSA
Serial Number: 0C 98 17 68 C4 96 FE A4 DC 52 39 5F 68 D4 E9 E1

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

OK

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
This file passed all security checks, but stay vigilant. New malware variants appear daily that can evade detection. Always verify files come from official sources and check digital signatures when available.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.

Your Score for
/

Gridinsoft Anti-Malware

Stay Malware-Free: Keep Your PC Protected with Gridinsoft Anti-Malware

Gridinsoft Anti-Malware offers just that—peace of mind with a robust, user-friendly solution that’s constantly updated to combat the latest threats. Designed by cybersecurity experts, it provides real-time protection and effortless malware removal. It’s not just about detecting threats; it's about enhancing your digital life with uninterrupted security. Give it a try and experience what it feels like to browse worry-free!

Gridinsoft Anti-Malware Download Now
Gridinsoft Anti-Malware