× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 014c6ef76c3a212765dd9362c79ba1b65d56664191776258e1dbfd84696618d5
File name: GrabberEngine.dll
Detection ratio: 0 / 42
Analysis date: 2012-06-02 21:37:33 UTC ( 5 years, 7 months ago ) View latest
Antivirus Result Update
AhnLab-V3 20120602
AntiVir 20120602
Antiy-AVL 20120602
Avast 20120602
AVG 20120602
BitDefender 20120602
ByteHero 20120531
CAT-QuickHeal 20120602
ClamAV 20120602
Commtouch 20120602
Comodo 20120602
DrWeb 20120602
Emsisoft 20120602
eSafe 20120530
F-Prot 20120602
F-Secure 20120602
Fortinet 20120602
GData 20120602
Ikarus 20120602
Jiangmin 20120602
K7AntiVirus 20120601
Kaspersky 20120602
McAfee 20120602
McAfee-GW-Edition 20120602
Microsoft 20120602
NOD32 20120602
Norman 20120602
nProtect 20120602
Panda 20120602
PCTools 20120602
Rising 20120601
Sophos AV 20120602
SUPERAntiSpyware 20120602
Symantec 20120602
TheHacker 20120531
TotalDefense 20120601
TrendMicro 20120602
TrendMicro-HouseCall 20120602
VBA32 20120531
VIPRE 20120602
ViRobot 20120602
VirusBuster 20120602
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (C) 2011 T-App Ltd. All rights reserved.

Publisher T-App
Product Pick Me App
Version 0.5.13.2
Original name GrabberEngine.dll
Internal name GrabberEngine.dll
File version 0.5.13.2
Description Grabber Engine library
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2012-01-10 18:26:20
Entry Point 0x0007B46E
Number of sections 5
PE sections
PE imports
RegCreateKeyExW
RegDeleteValueW
RegCloseKey
RegNotifyChangeKeyValue
RegSetValueExW
RegQueryInfoKeyW
RegEnumKeyExW
RegOpenKeyExW
RegEnumValueW
RegDeleteKeyW
RegQueryValueExW
SetThreadLocale
GetStdHandle
GetDriveTypeW
FileTimeToSystemTime
WaitForSingleObject
HeapDestroy
EncodePointer
GetFileAttributesW
GetLocalTime
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
FreeEnvironmentStringsW
GetLocaleInfoW
SetStdHandle
WideCharToMultiByte
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
SetEvent
LocalFree
FormatMessageW
GetTimeZoneInformation
LoadResource
GetLogicalDriveStringsW
FindClose
InterlockedDecrement
SetFileAttributesW
GetEnvironmentVariableW
SetLastError
GetSystemTime
TlsGetValue
CopyFileW
GetModuleFileNameW
IsDebuggerPresent
ExitProcess
GetModuleFileNameA
UnhandledExceptionFilter
LoadLibraryExW
MultiByteToWideChar
CreateThread
SetUnhandledExceptionFilter
MulDiv
IsProcessorFeaturePresent
GetFileInformationByHandle
DecodePointer
SetEnvironmentVariableA
TerminateProcess
SetCurrentDirectoryW
VirtualQuery
GetDiskFreeSpaceExW
SetEndOfFile
GetCurrentThreadId
InterlockedIncrement
WriteConsoleW
InitializeCriticalSectionAndSpinCount
HeapFree
EnterCriticalSection
SetHandleCount
TerminateThread
LoadLibraryW
MoveFileWithProgressW
GetVersionExW
GetOEMCP
QueryPerformanceCounter
GetTickCount
TlsAlloc
VirtualProtect
FlushFileBuffers
lstrcmpiW
RtlUnwind
FreeLibrary
GetFileSize
OpenProcess
GetDateFormatW
GetStartupInfoW
CreateDirectoryW
DeleteFileW
GetProcAddress
GetProcessHeap
GetTempFileNameW
CreateFileMappingW
GetTimeFormatW
ExpandEnvironmentStringsW
FindNextFileW
FindFirstFileW
FindFirstFileExW
WaitForMultipleObjects
GetTempPathW
CreateEventW
CreateFileW
GetFileType
TlsSetValue
HeapAlloc
LeaveCriticalSection
GetLastError
SystemTimeToFileTime
LCMapStringW
GetShortPathNameW
UnmapViewOfFile
GetSystemInfo
lstrlenA
GetConsoleCP
CompareStringW
GetThreadLocale
GetEnvironmentStringsW
lstrlenW
FileTimeToLocalFileTime
SizeofResource
GetCurrentDirectoryW
GetCurrentProcessId
LockResource
GetCPInfo
HeapSize
GetCommandLineA
WritePrivateProfileStringW
RaiseException
MapViewOfFile
TlsFree
SetFilePointer
ReadFile
CloseHandle
GetACP
GetModuleHandleW
FindResourceExW
GetLongPathNameW
IsValidCodePage
HeapCreate
FindResourceW
Sleep
VirtualAlloc
Ord(184)
Ord(150)
Ord(21)
Ord(162)
Ord(314)
Ord(161)
Ord(149)
Ord(22)
Ord(20)
Ord(186)
Ord(15)
Ord(40)
Ord(9)
Ord(94)
Ord(77)
Ord(277)
Ord(6)
Ord(4)
Ord(163)
Ord(19)
Ord(2)
Ord(10)
Ord(8)
Ord(185)
Ord(16)
Ord(27)
Ord(7)
EnumProcesses
GetModuleFileNameExW
EnumProcessModules
UuidToStringW
RpcStringFreeW
SHGetFolderPathW
Ord(43)
SHCreateDirectoryExW
SHFileOperationW
PathIsNetworkPathW
PathMakePrettyW
PathFileExistsW
PathAddBackslashW
PathAppendW
PathCanonicalizeW
PathIsRelativeW
PathIsDirectoryW
PathRemoveBackslashW
GetDesktopWindow
CharLowerBuffW
wsprintfW
CharNextW
wsprintfA
GetFileVersionInfoW
GetFileVersionInfoSizeW
Ord(272)
Ord(264)
Ord(173)
Ord(74)
Ord(266)
Ord(113)
Ord(219)
Ord(260)
Ord(111)
Ord(125)
Ord(274)
Ord(150)
Ord(7)
Ord(123)
Ord(17)
Ord(115)
Ord(121)
Ord(160)
Ord(171)
Ord(22)
Ord(190)
Ord(96)
Ord(159)
Ord(20)
Ord(88)
Ord(70)
Ord(186)
Ord(28)
Ord(119)
Ord(26)
Ord(49)
Ord(92)
Ord(151)
Ord(179)
Ord(141)
Ord(256)
Ord(137)
Ord(250)
Ord(116)
Ord(163)
Ord(120)
Ord(114)
Ord(34)
Ord(181)
Ord(166)
Ord(268)
Ord(45)
Ord(158)
Ord(47)
Ord(78)
Ord(153)
Ord(195)
Ord(118)
Ord(32)
Ord(8)
StgCreateStorageEx
CoUninitialize
CoInitialize
CoTaskMemAlloc
CoCreateGuid
CoTaskMemRealloc
CoCreateInstance
StgOpenStorageEx
CLSIDFromProgID
OleRun
CoTaskMemFree
StringFromGUID2
CoSetProxyBlanket
StgIsStorageFile
PE exports
Number of PE resources by type
REGISTRY 11
RT_RCDATA 1
TYPELIB 1
RT_STRING 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 12
UKRAINIAN DEFAULT 3
PE resources
ExifTool file metadata
SubsystemVersion
5.1

InitializedDataSize
407040

ImageVersion
0.0

ProductName
Pick Me App

FileVersionNumber
0.5.13.2

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Windows, Latin1

LinkerVersion
10.0

FileOS
Win32

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
0.5.13.2

TimeStamp
2012:01:10 18:26:20+00:00

FileType
Win32 DLL

PEType
PE32

InternalName
GrabberEngine.dll

ProductVersion
0.5.13.2

FileDescription
Grabber Engine library

OSVersion
5.1

OriginalFilename
GrabberEngine.dll

LegalCopyright
Copyright (C) 2011 T-App Ltd. All rights reserved.

MachineType
Intel 386 or later, and compatibles

CompanyName
T-App

CodeSize
598528

FileSubtype
0

ProductVersionNumber
0.5.13.2

EntryPoint
0x7b46e

ObjectFileType
Dynamic link library

File identification
MD5 382c5f6bdc7eedd98301859e283399d6
SHA1 db3d532528329674b78b360128584653f7e2229f
SHA256 014c6ef76c3a212765dd9362c79ba1b65d56664191776258e1dbfd84696618d5
ssdeep
24576:svQTmRi5oF1KROtpn6TuwyIAVHtTsttEj7eF:svQKa6XtpnU7ADTstag

File size 975.0 KB ( 998400 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID DirectShow filter (60.4%)
Windows ActiveX control (34.9%)
Win32 Dynamic Link Library (generic) (1.9%)
Win32 Executable (generic) (1.3%)
Generic Win/DOS Executable (0.6%)
Tags
pedll

VirusTotal metadata
First submission 2012-01-25 23:58:34 UTC ( 5 years, 11 months ago )
Last submission 2012-06-02 21:37:33 UTC ( 5 years, 7 months ago )
File names GrabberEngine.dll
file-3888612_dll
28A6E998003DE1C23C4B0FE885E51A00D400FAA2.dll
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!