× Cookies sind ausgeschaltet! Diese Seite erfordert aktivierte Cookies, um vollständig zu funktionieren.
SHA256: 920940626c9c69c60b9c139ecd932bd11a5b50a562dd9a613e7a86ebc5d447b1
Dateiname: ajufr51.dll
Erkennungsrate: 15 / 55
Analyse-Datum: 2016-11-30 16:29:33 UTC ( vor 2 Jahre, 5 Monate ) Zeige Neueste
Antivirus Ergebnis Aktualisierung
Avira (no cloud) TR/AD.Locky.tozsi 20161130
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9994 20161130
Bkav W32.eHeur.Malware03 20161130
CrowdStrike Falcon (ML) malicious_confidence_100% (D) 20161024
DrWeb Trojan.Encoder.7191 20161130
ESET-NOD32 Win32/Filecoder.Locky.D 20161130
Ikarus Trojan-Ransom.Locky 20161130
Kaspersky Trojan-Ransom.Win32.Locky.wls 20161130
Malwarebytes Ransom.Locky 20161130
eScan Trojan.Ransom.Locky.BR 20161130
Qihoo-360 HEUR/QVM40.1.0000.Malware.Gen 20161130
Rising Malware.Undefined!8.C-xjLnVfluXEH (cloud) 20161130
Sophos AV Mal/Generic-S 20161130
Tencent Win32.Trojan.Raas.Auto 20161130
TrendMicro Ransom_LOCKY.DLDTAQW 20161130
Ad-Aware 20161130
AegisLab 20161130
AhnLab-V3 20161130
Alibaba 20161130
ALYac 20161130
Antiy-AVL 20161130
Arcabit 20161130
Avast 20161130
AVG 20161130
AVware 20161130
BitDefender 20161130
CAT-QuickHeal 20161130
ClamAV 20161130
CMC 20161130
Comodo 20161130
Cyren 20161130
Emsisoft 20161130
F-Prot 20161130
F-Secure 20161130
Fortinet 20161130
GData 20161130
Sophos ML 20161128
Jiangmin 20161130
K7AntiVirus 20161130
K7GW 20161130
Kingsoft 20161130
McAfee 20161130
McAfee-GW-Edition 20161130
Microsoft 20161130
NANO-Antivirus 20161130
nProtect 20161130
Panda 20161130
SUPERAntiSpyware 20161130
Symantec 20161130
TheHacker 20161130
TrendMicro-HouseCall 20161130
Trustlook 20161130
VBA32 20161130
VIPRE 20161130
ViRobot 20161130
WhiteArmor 20161125
Yandex 20161128
Zillya 20161130
Zoner 20161130
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-11-30 07:10:49
Entry Point 0x000020F0
Number of sections 6
PE sections
PE imports
VirtualAlloc
GetProcAddress
LoadLibraryW
malloc
_adjust_fdiv
free
_onexit
__dllonexit
_initterm
memcpy
CoWaitForMultipleHandles
PE exports
Number of PE resources by type
RT_STRING 1
Number of PE resources by language
ENGLISH US 1
PE resources
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

FileTypeExtension
dll

TimeStamp
2016:11:30 08:10:49+01:00

FileType
Win32 DLL

PEType
PE32

CodeSize
20480

LinkerVersion
7.1

ImageFileCharacteristics
Executable, No line numbers, No symbols, 32-bit, DLL

EntryPoint
0x20f0

InitializedDataSize
167936

SubsystemVersion
4.0

ImageVersion
0.0

OSVersion
4.0

UninitializedDataSize
0

Compressed bundles
File identification
MD5 79012bf5a0efa73439e3c648de408689
SHA1 5f09035ac0fa8a8de072932cd1a355b06a581345
SHA256 920940626c9c69c60b9c139ecd932bd11a5b50a562dd9a613e7a86ebc5d447b1
ssdeep
3072:9rq4j7Tx2vTUEvcaOHNwYYLN805NORBjkXzMbpLUim:Z392vTUAcaY6NtEWzMbei

authentihash 5dc1a2e4438f951f2c803b6af84e1e5606a4a506c6ab1600bed858610e7bfe2a
imphash ff471384792af87c32343f8acbdf74f2
File size 188.0 KB ( 192512 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID Win64 Executable (generic) (61.7%)
Win32 Dynamic Link Library (generic) (14.7%)
Win32 Executable (generic) (10.0%)
OS/2 Executable (generic) (4.5%)
Generic Win/DOS Executable (4.4%)
Tags
pedll

VirusTotal metadata
First submission 2016-11-30 09:58:22 UTC ( vor 2 Jahre, 5 Monate )
Last submission 2017-08-19 05:01:15 UTC ( vor 1 Jahr, 9 Monate )
Dateinamen ajufr51.dll.2952.dr
ajufr51.dll
ajufr52.dll
ajufr51.dll
ajufr51.dl_
873nf3g.dat
Keine Kommentare. Bisher hat kein Mitglied der VirusTotal-Community einen Kommentar zu diesem Punkt verfasst, seien Sie der Erste!

Hinterlassen Sie Ihren Kommentar...

?
Kommentar abschicken

Sie sind nicht angemeldet. Nur registrierte Nutzer können Kommentare hinterlassen, melden Sie sich an und sagen Sie etwas dazu!

Keine Bewertungen. Niemand hat diesen Punkt bisher bewertet, seien Sie der Erste!