× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 07f92b7ef367e4f295ac559fc9120cbf308f94c60868852cd6203a681212cfec
File name: dell-latitude-d810-drivers-utility.exe
Detection ratio: 15 / 57
Analysis date: 2016-09-21 11:40:55 UTC ( 1 year, 5 months ago )
Antivirus Result Update
Antiy-AVL Trojan/Win32.BTSGeneric 20160921
AVG Startpage.AAPE 20160921
CAT-QuickHeal Trojan.Homepage 20160921
ESET-NOD32 Win32/Adware.DGTSoft.A 20160921
GData Win32.Application.Agent.EPZD6H 20160921
Ikarus PUA.Win32.DriverBoss 20160921
Kaspersky Trojan.Win32.Homepage.aa 20160921
Malwarebytes PUP.Optional.DGTSoft 20160921
McAfee BingVC 20160921
McAfee-GW-Edition BingVC 20160920
Microsoft BrowserModifier:Win32/Kronaldaler 20160921
Rising Trojan.Generic-0xe6xS5T1WS (cloud) 20160921
Tencent Win32.Trojan.Homepage.Wsjs 20160921
TrendMicro-HouseCall TROJ_GE.4DC8C355 20160921
VBA32 Trojan.Homepage 20160920
Ad-Aware 20160921
AegisLab 20160921
AhnLab-V3 20160921
Alibaba 20160921
ALYac 20160921
Arcabit 20160921
Avast 20160921
Avira (no cloud) 20160921
AVware 20160921
Baidu 20160921
BitDefender 20160921
Bkav 20160921
ClamAV 20160921
CMC 20160921
Comodo 20160920
CrowdStrike Falcon (ML) 20160725
Cyren 20160921
DrWeb 20160921
Emsisoft 20160921
F-Prot 20160921
F-Secure 20160921
Fortinet 20160921
Sophos ML 20160917
Jiangmin 20160921
K7AntiVirus 20160921
K7GW 20160921
Kingsoft 20160921
eScan 20160921
NANO-Antivirus 20160921
nProtect 20160921
Panda 20160920
Qihoo-360 20160921
Sophos AV 20160921
SUPERAntiSpyware 20160920
Symantec 20160921
TheHacker 20160920
TrendMicro 20160921
VIPRE 20160921
ViRobot 20160921
Yandex 20160920
Zillya 20160921
Zoner 20160921
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright

Product DELL Latitude D810 Drivers Utility
File version
Description DELL Latitude D810 Drivers Utility Setup
Comments This installation was built with Inno Setup.
Packers identified
F-PROT INNO
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 1992-06-19 22:22:17
Entry Point 0x00009C40
Number of sections 8
PE sections
Overlays
MD5 59a0d731bd7ac45064e8b2f11a618504
File type data
Offset 54272
Size 3091178
Entropy 8.00
PE imports
LookupPrivilegeValueA
RegCloseKey
OpenProcessToken
RegQueryValueExA
AdjustTokenPrivileges
RegOpenKeyExA
InitCommonControls
GetSystemTime
GetLastError
GetEnvironmentVariableA
GetStdHandle
EnterCriticalSection
GetUserDefaultLangID
GetSystemInfo
GetFileAttributesA
GetExitCodeProcess
ExitProcess
CreateDirectoryA
VirtualProtect
GetVersionExA
RemoveDirectoryA
RtlUnwind
LoadLibraryA
DeleteCriticalSection
GetCurrentProcess
SizeofResource
GetLocaleInfoA
LocalAlloc
LockResource
IsDBCSLeadByte
DeleteFileA
GetWindowsDirectoryA
GetSystemDefaultLCID
SetErrorMode
MultiByteToWideChar
GetCommandLineA
GetProcAddress
FormatMessageA
SetFilePointer
RaiseException
WideCharToMultiByte
GetModuleHandleA
ReadFile
InterlockedExchange
WriteFile
CloseHandle
GetACP
GetFullPathNameA
LocalFree
CreateProcessA
GetModuleFileNameA
InitializeCriticalSection
LoadResource
VirtualQuery
VirtualFree
TlsGetValue
Sleep
GetFileType
SetEndOfFile
TlsSetValue
CreateFileA
FindResourceA
VirtualAlloc
GetFileSize
SetLastError
LeaveCriticalSection
SysStringLen
SysAllocStringLen
VariantCopyInd
VariantClear
VariantChangeTypeEx
CharPrevA
CreateWindowExA
LoadStringA
DispatchMessageA
CallWindowProcA
MessageBoxA
PeekMessageA
SetWindowLongA
MsgWaitForMultipleObjects
TranslateMessage
ExitWindowsEx
DestroyWindow
Number of PE resources by type
RT_STRING 6
RT_ICON 4
RT_MANIFEST 1
RT_RCDATA 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 7
DUTCH 4
ENGLISH US 3
PE resources
ExifTool file metadata
UninitializedDataSize
0

Comments
This installation was built with Inno Setup.

LinkerVersion
2.25

ImageVersion
6.0

FileSubtype
0

FileVersionNumber
0.0.0.0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
17920

EntryPoint
0x9c40

MIMEType
application/octet-stream

TimeStamp
1992:06:19 23:22:17+01:00

FileType
Win32 EXE

PEType
PE32

SubsystemVersion
4.0

FileDescription
DELL Latitude D810 Drivers Utility Setup

OSVersion
1.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Lavians Inc.

CodeSize
37888

ProductName
DELL Latitude D810 Drivers Utility

ProductVersionNumber
0.0.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 d88443ff67f5c0713067e21982e31706
SHA1 136cb80ad10b88c02a8de985222dd9bbb81c20b5
SHA256 07f92b7ef367e4f295ac559fc9120cbf308f94c60868852cd6203a681212cfec
ssdeep
49152:5aYJ5DL6h9XYgjOu06n2zO5zmCJBJJm1M2xnNlbyMmEcglj7o+gxjz7ZeEYTv7ho:QYJ5/SVnMO5aCJTJGxnNl+Ycg97kz1ee

authentihash 33a14f447ccca6849a5759674c950d62df75a419d3e8faf22b4f25c7ea1a132c
imphash 884310b1928934402ea6fec1dbd3cf5e
File size 3.0 MB ( 3145450 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Inno Setup installer (77.7%)
Win32 Executable Delphi generic (10.0%)
Win32 Dynamic Link Library (generic) (4.6%)
Win32 Executable (generic) (3.1%)
Win16/32 Executable Delphi generic (1.4%)
Tags
peexe overlay

VirusTotal metadata
First submission 2015-07-08 23:49:53 UTC ( 2 years, 7 months ago )
Last submission 2016-05-05 04:50:18 UTC ( 1 year, 9 months ago )
File names dell-latitude-d810-drivers-utility.exe
d88443ff67f5c0713067e21982e31706
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Deleted files
Created processes
Runtime DLLs