× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 0fcaecae69dea38ef2d9ade4318ee3e54dd14b547b4f4a3ddff1d7638209e14e
File name: WindowsBase.dll
Detection ratio: 0 / 64
Analysis date: 2017-07-27 13:12:38 UTC ( 1 year, 5 months ago )
Antivirus Result Update
Ad-Aware 20170727
AegisLab 20170727
AhnLab-V3 20170727
Alibaba 20170727
ALYac 20170727
Antiy-AVL 20170727
Arcabit 20170727
Avast 20170727
AVG 20170727
Avira (no cloud) 20170727
AVware 20170721
Baidu 20170727
BitDefender 20170727
Bkav 20170727
CAT-QuickHeal 20170727
ClamAV 20170727
CMC 20170727
Comodo 20170727
CrowdStrike Falcon (ML) 20170710
Cylance 20170727
Cyren 20170727
DrWeb 20170727
Emsisoft 20170727
Endgame 20170721
ESET-NOD32 20170727
F-Prot 20170727
F-Secure 20170727
Fortinet 20170727
GData 20170727
Ikarus 20170727
Sophos ML 20170607
Jiangmin 20170727
K7AntiVirus 20170727
K7GW 20170727
Kaspersky 20170727
Kingsoft 20170727
Malwarebytes 20170727
MAX 20170727
McAfee 20170727
McAfee-GW-Edition 20170726
Microsoft 20170727
eScan 20170727
NANO-Antivirus 20170727
nProtect 20170727
Palo Alto Networks (Known Signatures) 20170727
Panda 20170727
Qihoo-360 20170727
Rising 20170727
SentinelOne (Static ML) 20170718
Sophos AV 20170727
SUPERAntiSpyware 20170727
Symantec 20170727
Symantec Mobile Insight 20170727
Tencent 20170727
TheHacker 20170727
TotalDefense 20170727
TrendMicro 20170727
TrendMicro-HouseCall 20170727
Trustlook 20170727
VBA32 20170727
VIPRE 20170727
ViRobot 20170727
Webroot 20170727
Yandex 20170726
Zillya 20170726
ZoneAlarm by Check Point 20170727
Zoner 20170727
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file.
FileVersionInfo properties
Copyright
© Microsoft Corporation. All rights reserved.

Product Microsoft® .NET Framework
Original name WindowsBase.dll
Internal name WindowsBase.dll
File version 4.0.30319.269 built by: RTMGDR
Description WindowsBase.dll
Comments Flavor=Retail
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2011-12-15 11:16:49
Number of sections 4
.NET details
Module Version ID 70e9452f-5f0a-4f0e-8e02-203992f4221c
PE sections
Number of PE resources by type
RT_VERSION 1
Number of PE resources by language
NEUTRAL 1
PE resources
Debug information
ExifTool file metadata
FileAccessDate
2014:12:01 06:59:38+01:00

FileCreateDate
2014:12:01 06:59:38+01:00

File identification
MD5 6cf7b01c9c7906eba088d0ff56956a6e
SHA1 fb8480fd47be226ea1f18e55933c982c2b19e995
SHA256 0fcaecae69dea38ef2d9ade4318ee3e54dd14b547b4f4a3ddff1d7638209e14e
ssdeep
49152:7QHBjOxniYH6F+iyk7k6BInfk3AhTMJiMl/riD1gmr7jbX0:7i4tnfk3AhTMvZu1gmXH

authentihash 589290f5aaff211971587eed0fb499e729d75efa6569ecaa97a1fc7b296724b9
File size 3.7 MB ( 3858432 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (console) Intel 80386 32-bit Mono/.Net assembly

TrID Win32 Executable (generic) (52.7%)
Generic Win/DOS Executable (23.4%)
DOS Executable Generic (23.4%)
VXD Driver (0.3%)
Tags
assembly pedll

VirusTotal metadata
First submission 2013-04-26 15:27:56 UTC ( 5 years, 8 months ago )
Last submission 2013-04-26 15:27:56 UTC ( 5 years, 8 months ago )
File names 6CF7B01C9C7906EBA088D0FF56956A6E
WindowsBase.dll
A0003398.dll
WindowsBase.ni.dll
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!