× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 1a907a140f7d7140ef203671f50d9ae37bce2d654d2df03f335ba6e973219dae
File name: c2BwHrtql2.dll
Detection ratio: 9 / 58
Analysis date: 2016-09-13 09:38:22 UTC ( 2 years, 5 months ago ) View latest
Antivirus Result Update
Baidu Win32.Trojan.WisdomEyes.151026.9950.9999 20160913
Bkav HW32.Packed.DFF2 20160912
CrowdStrike Falcon (ML) malicious_confidence_100% (D) 20160725
Sophos ML trojan.win32.skeeyah.a!rfn 20160912
McAfee-GW-Edition BehavesLike.Win32.Ramnit.cc 20160912
Qihoo-360 HEUR/QVM39.1.0000.Malware.Gen 20160913
Rising Malware.Generic!Z2ad6p0b3l@1 (thunder) 20160913
Symantec Heur.AdvML.B 20160913
Tencent Win32.Trojan.Raasj.Auto 20160913
Ad-Aware 20160913
AegisLab 20160913
AhnLab-V3 20160913
Alibaba 20160913
ALYac 20160913
Antiy-AVL 20160913
Arcabit 20160913
Avast 20160913
AVG 20160913
Avira (no cloud) 20160913
AVware 20160913
BitDefender 20160913
CAT-QuickHeal 20160913
ClamAV 20160913
CMC 20160912
Comodo 20160912
Cyren 20160913
DrWeb 20160913
Emsisoft 20160913
ESET-NOD32 20160913
F-Prot 20160913
F-Secure 20160913
Fortinet 20160913
GData 20160913
Ikarus 20160913
Jiangmin 20160913
K7AntiVirus 20160913
K7GW 20160913
Kaspersky 20160913
Kingsoft 20160913
Malwarebytes 20160913
McAfee 20160913
Microsoft 20160913
eScan 20160913
NANO-Antivirus 20160913
nProtect 20160913
Panda 20160912
Sophos AV 20160913
SUPERAntiSpyware 20160913
TheHacker 20160911
TotalDefense 20160907
TrendMicro 20160913
TrendMicro-HouseCall 20160913
VBA32 20160912
VIPRE 20160913
ViRobot 20160913
Yandex 20160911
Zillya 20160912
Zoner 20160913
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
© WelltonWay. All rights reserved.

Product PVRX3
Original name PVRX3.exe
Internal name PVRX3.exe
File version 1.0.3.0
Description PVRX3
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-09-13 06:46:40
Entry Point 0x0000953D
Number of sections 7
PE sections
Overlays
MD5 610dd0ca6f8e93a4741f0ae7104eeae3
File type data
Offset 135168
Size 4208
Entropy 7.96
PE imports
RegCreateKeyExW
CryptDestroyKey
RegCloseKey
RegRestoreKeyW
RegQueryValueExA
SetEntriesInAclW
RegCreateKeyW
OpenServiceW
AdjustTokenPrivileges
ControlService
CryptReleaseContext
LookupPrivilegeValueW
RegOpenKeyExW
RegDeleteKeyW
DeleteService
OpenThreadToken
CryptHashData
RegQueryValueExW
CryptCreateHash
GetNamedSecurityInfoW
OpenProcessToken
QueryServiceStatus
RegEnumKeyW
SetTokenInformation
RegOpenKeyW
RegOpenKeyExA
RegQueryValueW
DuplicateTokenEx
CryptVerifySignatureW
CloseServiceHandle
RegQueryInfoKeyW
RegEnumKeyExW
CryptAcquireContextW
GetUserNameA
CreateProcessAsUserW
CryptDestroyHash
CryptGetUserKey
RegDeleteValueW
RevertToSelf
StartServiceW
RegSetValueExW
FreeSid
OpenSCManagerW
RegEnumValueW
AllocateAndInitializeSid
SetNamedSecurityInfoW
InitCommonControlsEx
GetSaveFileNameW
GetFileTitleW
CommDlgExtendedError
SetGraphicsMode
Polygon
TextOutW
CreateFontIndirectW
SetBitmapBits
GetGlyphOutlineW
CreatePen
SaveDC
GdiFlush
GetTextMetricsA
CombineRgn
GetClipBox
ModifyWorldTransform
GetBitmapBits
Rectangle
SetMapMode
GetBrushOrgEx
OffsetViewportOrgEx
DeleteDC
RestoreDC
SetBkMode
GetCharacterPlacementW
ScaleWindowExtEx
CreateBitmap
SetWorldTransform
GetPixel
DeleteObject
GetObjectW
BitBlt
SetViewportOrgEx
CreateDIBSection
RealizePalette
SetTextColor
CreatePatternBrush
GetDeviceCaps
GetClipRgn
ExtTextOutW
GetOutlineTextMetricsA
GetTextExtentPoint32W
CreateDCW
CreatePalette
EnumFontFamiliesExW
SetPixelV
SelectPalette
GetFontData
PtVisible
GetDIBits
ExtCreateRegion
SetTextAlign
ScaleViewportExtEx
SelectClipRgn
CreateCompatibleDC
CreateFontW
GetBkColor
SetBrushOrgEx
CreateRectRgn
SelectObject
SetPolyFillMode
CreateCompatibleBitmap
SetWindowExtEx
CreateSolidBrush
GetStockObject
Escape
SetBkColor
SetViewportExtEx
Ellipse
RectVisible
ImmReleaseContext
ImmGetContext
GetIpForwardTable
SetThreadLocale
GetStdHandle
FileTimeToDosDateTime
GetConsoleOutputCP
ReleaseMutex
FileTimeToSystemTime
GetComputerNameA
GetFileAttributesA
WaitForSingleObject
GetDriveTypeA
FindFirstFileW
HeapDestroy
DebugBreak
GetFileAttributesW
lstrcmpW
GetLocalTime
GetProfileIntA
FreeEnvironmentStringsA
CreatePipe
HeapReAlloc
GetDriveTypeW
GetConsoleMode
GetLocaleInfoA
LocalAlloc
UnhandledExceptionFilter
ExpandEnvironmentStringsA
GetFileInformationByHandle
SetErrorMode
GetLogicalDrives
FreeEnvironmentStringsW
GetLocaleInfoW
EnumResourceLanguagesW
GetFileTime
GetTempPathA
WideCharToMultiByte
GetProcAddress
GetStringTypeA
InterlockedExchange
WriteFile
GetSystemTimeAsFileTime
GlobalMemoryStatusEx
GetDiskFreeSpaceA
GetStringTypeW
GetExitCodeProcess
LocalFree
FormatMessageW
ResumeThread
GetLogicalDriveStringsA
InitializeCriticalSection
LoadResource
GlobalHandle
FindClose
TlsGetValue
MoveFileW
GetFullPathNameW
OutputDebugStringA
GetCurrentThread
SetLastError
GetUserDefaultUILanguage
GetSystemTime
DeviceIoControl
LocalLock
GetUserDefaultLangID
OutputDebugStringW
RemoveDirectoryW
GlobalFindAtomA
HeapAlloc
GetVersionExA
GetModuleFileNameA
GlobalFindAtomW
QueryPerformanceFrequency
EnumCalendarInfoA
LoadLibraryExA
SetConsoleCtrlHandler
GetSystemDefaultLCID
InterlockedDecrement
MultiByteToWideChar
SetFilePointerEx
GetSystemPowerStatus
FormatMessageA
CreateMutexA
CreateEventW
GlobalAddAtomW
CreateThread
DeleteCriticalSection
GetExitCodeThread
GlobalAddAtomA
CreateSemaphoreW
ConvertDefaultLocale
GetCurrentProcess
CreateMutexW
MulDiv
GetDateFormatA
ExitThread
GetDiskFreeSpaceExA
WriteConsoleA
SetCurrentDirectoryW
VirtualQuery
LocalFileTimeToFileTime
GetDiskFreeSpaceExW
SetEndOfFile
GetVersion
InterlockedIncrement
WriteConsoleW
CloseHandle
AddAtomA
HeapFree
EnterCriticalSection
SetHandleCount
lstrcmpiA
GetLastError
GetVersionExW
SetEvent
QueryPerformanceCounter
GetTickCount
TlsAlloc
VirtualProtect
FlushFileBuffers
LoadLibraryA
RtlUnwind
FreeLibrary
CopyFileW
GlobalSize
GetStartupInfoA
UnlockFile
GetFileSize
GlobalDeleteAtom
OpenProcess
GetPrivateProfileIntA
CreateDirectoryA
DeleteFileA
GetWindowsDirectoryA
GetDateFormatW
GetStartupInfoW
GetCPInfo
DeleteFileW
GlobalLock
AddAtomW
GetProcessHeap
GetTempFileNameW
CreateFileMappingW
CompareStringW
GlobalReAlloc
GetModuleFileNameW
ExpandEnvironmentStringsW
lstrcmpA
FindNextFileW
GetModuleHandleA
CreateDirectoryW
lstrcpyA
CompareStringA
CreateFileMappingA
FindNextFileA
FindAtomW
DuplicateHandle
GetUserDefaultLCID
GlobalAlloc
GetTimeZoneInformation
CreateFileW
GetConsoleWindow
CreateEventA
GetFileType
TlsSetValue
CreateFileA
ExitProcess
LeaveCriticalSection
GlobalGetAtomNameW
SystemTimeToFileTime
LCMapStringW
UnmapViewOfFile
GetSystemInfo
lstrlenA
GlobalFree
GetConsoleCP
LCMapStringA
GetThreadLocale
GetVolumeInformationW
GetEnvironmentStringsW
GlobalUnlock
LockFile
GetShortPathNameA
FileTimeToLocalFileTime
GetEnvironmentStrings
GetCurrentDirectoryW
GetCurrentProcessId
LockResource
SetFileTime
GetCommandLineW
GetCurrentDirectoryA
HeapSize
GetCommandLineA
CancelIo
WritePrivateProfileStringW
RaiseException
ReleaseSemaphore
MapViewOfFile
TlsFree
SetFilePointer
ReadFile
GlobalFlags
SetProcessWorkingSetSize
FindFirstFileA
lstrcpynA
GetACP
GetCurrentThreadId
FreeResource
GetFileAttributesExW
SetStdHandle
SizeofResource
LoadLibraryW
GetConsoleFontSize
HeapCreate
FindResourceW
VirtualFree
Sleep
IsBadReadPtr
FindResourceA
VirtualAlloc
GetOEMCP
ResetEvent
AlphaBlend
GradientFill
SysStringLen
SysAllocString
VariantInit
CreateErrorInfo
SafeArrayGetLBound
UnRegisterTypeLib
SafeArrayDestroy
SafeArrayGetUBound
LoadTypeLib
SysFreeString
SysAllocStringByteLen
LoadRegTypeLib
VariantChangeType
SafeArrayGetElement
SafeArrayGetVartype
SafeArrayCopy
SetErrorInfo
VarUI4FromStr
VariantTimeToSystemTime
SystemTimeToVariantTime
RegisterTypeLib
VariantClear
GetErrorInfo
SafeArrayGetDim
QueryWorkingSet
EnumProcesses
GetModuleInformation
EnumProcessModules
GetProcessMemoryInfo
GetModuleFileNameExW
GetModuleBaseNameW
DragQueryFileW
SHQueryRecycleBinW
SHEmptyRecycleBinW
SHCreateDirectoryExW
DragFinish
SHGetFolderLocation
Shell_NotifyIconW
SHGetDesktopFolder
SHGetPathFromIDListW
ExtractIconExW
SHFileOperationW
SHGetSpecialFolderPathW
SHGetMalloc
CommandLineToArgvW
SHBrowseForFolderW
PathStripPathW
SHDeleteKeyW
PathFindFileNameW
PathFileExistsW
PathRemoveFileSpecW
SHCopyKeyW
PathIsUNCW
StrCatW
StrStrIW
PathAppendW
PathFindExtensionW
PathGetDriveNumberW
PathStripToRootW
PathMakeSystemFolderW
PathUnmakeSystemFolderW
PathIsDirectoryW
PathRemoveExtensionW
RedrawWindow
GetForegroundWindow
VkKeyScanExW
UnregisterHotKey
SetMenuItemBitmaps
LoadBitmapW
MoveWindow
DestroyMenu
PostQuitMessage
GetMessagePos
SetWindowPos
IsWindow
GrayStringW
EndPaint
EndDialog
WindowFromPoint
GetMessageTime
SetMenuItemInfoW
SetActiveWindow
DispatchMessageW
GetAsyncKeyState
ReleaseDC
GetDlgCtrlID
SendMessageW
UnregisterClassA
IsDialogMessageW
GetMenuStringW
SendMessageA
UnregisterClassW
GetClassInfoW
DefWindowProcW
AllowSetForegroundWindow
DrawTextW
PostThreadMessageW
GetNextDlgTabItem
InSendMessage
CallNextHookEx
LoadImageW
GetActiveWindow
RegisterHotKey
OpenClipboard
MapVirtualKeyExW
EnumClipboardFormats
GetWindowTextLengthW
MsgWaitForMultipleObjects
GetTopWindow
PtInRect
DrawEdge
GetParent
UpdateWindow
GetPropW
EqualRect
EnumWindows
GetMenuState
CreateCaret
GetWindowTextW
GetMessageW
ShowWindow
GetCaretPos
DrawFrameControl
SetPropW
EnumDisplayMonitors
PeekMessageW
EnableWindow
GetDC
CharUpperW
GetSystemMenu
TranslateMessage
IsWindowEnabled
GetWindow
DestroyCaret
RegisterClassW
GetIconInfo
LoadAcceleratorsW
LoadStringA
SetParent
SetClipboardData
GetWindowPlacement
LoadStringW
EnableMenuItem
TrackPopupMenuEx
GetSubMenu
SetTimer
ShowOwnedPopups
FillRect
MonitorFromPoint
CopyRect
DeferWindowPos
GetDialogBaseUnits
CreateWindowExW
RemovePropW
GetWindowLongW
GetCursorPos
CharNextW
DragDetect
MapWindowPoints
RegisterWindowMessageW
GetMonitorInfoW
IsIconic
BeginPaint
OffsetRect
SetCaretPos
DrawIcon
KillTimer
TrackMouseEvent
GetComboBoxInfo
CharPrevW
GetClipboardData
GetClassInfoExW
SendDlgItemMessageA
GetSystemMetrics
SetWindowLongW
GetWindowRect
InflateRect
SetCapture
ReleaseCapture
EnumChildWindows
IntersectRect
CharLowerW
SendDlgItemMessageW
PostMessageW
MonitorFromRect
CheckDlgButton
CreatePopupMenu
CheckMenuItem
DrawFocusRect
GetClassLongW
GetLastActivePopup
SetWindowTextW
GetDlgItem
GetMenuCheckMarkDimensions
BringWindowToTop
ClientToScreen
TrackPopupMenu
DialogBoxIndirectParamW
GetMenuItemCount
GetDesktopWindow
SetWindowsHookExW
LoadCursorW
LoadIconW
ReuseDDElParam
GetMenuItemID
InsertMenuW
SetForegroundWindow
GetClientRect
SetFocus
GetMenuItemInfoW
EmptyClipboard
GetCaretBlinkTime
CreateDialogIndirectParamW
DrawTextExW
SetLayeredWindowAttributes
GetScrollInfo
GetKeyboardLayout
FindWindowW
GetCapture
ScreenToClient
MessageBeep
LoadMenuW
RemoveMenu
GetWindowThreadProcessId
GetSysColorBrush
BeginDeferWindowPos
MessageBoxW
GetMenu
RegisterClassExW
SetMenu
SetRectEmpty
AppendMenuW
GetWindowDC
DestroyCursor
AdjustWindowRectEx
GetSysColor
RegisterClipboardFormatW
GetKeyState
EndDeferWindowPos
SystemParametersInfoA
UpdateLayeredWindow
GetDoubleClickTime
TabbedTextOutW
DestroyIcon
IsWindowVisible
WinHelpW
UnpackDDElParam
SystemParametersInfoW
MonitorFromWindow
FrameRect
SetRect
DeleteMenu
InvalidateRect
CallWindowProcW
GetClassNameW
DestroyWindow
ModifyMenuW
ValidateRect
IsRectEmpty
GetFocus
InsertMenuItemW
CloseClipboard
SetCursor
UnhookWindowsHookEx
TranslateAcceleratorW
CreateEnvironmentBlock
DestroyEnvironmentBlock
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
WinHttpSetOption
WinHttpConnect
WinHttpQueryHeaders
WinHttpSendRequest
WinHttpCloseHandle
WinHttpReceiveResponse
WinHttpOpen
WinHttpOpenRequest
WinHttpReadData
InternetTimeFromSystemTimeW
HttpQueryInfoW
InternetGetLastResponseInfoW
InternetConnectW
InternetReadFile
InternetCloseHandle
InternetSetOptionW
InternetGetConnectedState
InternetErrorDlg
InternetTimeToSystemTimeW
HttpSendRequestW
InternetOpenW
HttpOpenRequestW
HttpAddRequestHeadersW
mixerGetLineControlsW
mixerGetControlDetailsW
mciGetErrorStringW
mixerOpen
mixerSetControlDetails
mciSendCommandW
mixerClose
mixerGetDevCapsW
mixerGetLineInfoW
WTSEnumerateSessionsW
WTSFreeMemory
GdipDrawImageRectRect
GdipGetFontStyle
GdipDrawRectangleI
GdipCreateLineBrushFromRectWithAngleI
GdipSaveGraphics
GdipGetGenericFontFamilySansSerif
GdipTranslateMatrix
GdipSetPenBrushFill
GdipCreateBitmapFromScan0
GdipGetImageVerticalResolution
GdipDisposeImage
GdipImageSelectActiveFrame
GdipGetFamilyName
GdipGetFontSize
GdipGetCompositingMode
GdipGetTextRenderingHint
GdipGetCellAscent
GdipGetClipBounds
GdipSetStringFormatAlign
GdipImageGetFrameCount
GdipGetImageWidth
GdipDrawImageI
GdipDrawImageRectRectI
GdipCreateFont
GdipCloneBrush
GdipCloneStringFormat
GdipSetClipRect
GdipFree
GdipGetImageRawFormat
GdipGetImageHeight
GdipDeleteStringFormat
GdipTranslateWorldTransform
GdipSetPenDashStyle
GdipSetTextRenderingHint
GdipCreateBitmapFromHICON
GdipGetImageHorizontalResolution
GdipSetImageAttributesColorMatrix
GdipSaveImageToFile
GdipMeasureString
GdipTransformMatrixPoints
GdipBitmapSetResolution
GdiplusStartup
GdipGetFamily
GdipFillPath
GdipCreateBitmapFromStream
GdipGetImageThumbnail
GdipGetImageEncoders
GdipFillRectangleI
GdipDisposeImageAttributes
GdipSetCompositingMode
GdipClosePathFigure
GdipCreateMatrix
GdipDrawLine
GdipRotateMatrix
GdipGetImageGraphicsContext
GdipRestoreGraphics
GdipGetImageEncodersSize
GdipBitmapLockBits
GdipClonePen
GdipGetCellDescent
GdipStringFormatGetGenericDefault
GdipDrawPath
GdipDeleteFontFamily
GdipCloneFontFamily
GdipCreatePath
GdipBitmapUnlockBits
GdipFillRectangle
GdipDeleteFont
GdipSetPixelOffsetMode
GdipGetPropertyItem
GdipGetPropertyItemSize
GdipDrawLineI
GdipBitmapGetPixel
GdipCreateFontFamilyFromName
GdipSetStringFormatFlags
GdipDeleteBrush
GdipRotateWorldTransform
GdipInvertMatrix
GdipAddPathArcI
GdipSetMatrixElements
GdipSetClipRectI
GdipStringFormatGetGenericTypographic
GdipGetStringFormatFlags
GdipGetClipBoundsI
GdipGetImagePixelFormat
GdipCreateSolidFill
GdipSetSmoothingMode
GdipSetStringFormatTrimming
GdipGetEmHeight
GdipGetDC
GdipDeleteMatrix
GdipGetLineSpacing
GdipDeleteGraphics
GdipTransformPath
GdipCreateImageAttributes
GdipCreateFromHDC
GdipCreatePen1
GdipDrawRectangle
GdipAlloc
GdipDeletePath
GdipDeletePen
GdipSetInterpolationMode
GdipDrawString
GdipCloneImage
GdipReleaseDC
_exit
isalpha
_CIcos
_wtoi
OleLockRunning
CoUninitialize
StringFromGUID2
CoSetProxyBlanket
CreateStreamOnHGlobal
CoCreateGuid
RegisterDragDrop
RevokeDragDrop
CLSIDFromString
CoRegisterClassObject
CoInitialize
OleInitialize
CoLockObjectExternal
CoTaskMemRealloc
CoCreateInstance
CoCreateInstanceEx
CoTaskMemAlloc
CoRevokeClassObject
CLSIDFromProgID
CoInitializeSecurity
OleSetContainedObject
CoTaskMemFree
OleUIBusyW
SnmpUtilOidCpy
SnmpUtilOidNCmp
SnmpUtilVarBindFree
CreateURLMonikerEx
PE exports
Number of PE resources by type
RT_VERSION 1
Number of PE resources by language
ENGLISH US 1
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
4.1

InitializedDataSize
138240

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.0.3.0

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x0000

CharacterSet
Unicode

LinkerVersion
4.0

EntryPoint
0x953d

OriginalFileName
PVRX3.exe

MIMEType
application/octet-stream

LegalCopyright
WelltonWay. All rights reserved.

FileVersion
1.0.3.0

TimeStamp
2016:09:13 07:46:40+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
PVRX3.exe

ProductVersion
1.0.3.0

FileDescription
PVRX3

OSVersion
4.1

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
WelltonWay

CodeSize
69632

ProductName
PVRX3

ProductVersionNumber
1.0.3.0

FileTypeExtension
dll

ObjectFileType
Executable application

AssemblyVersion
1.0.3.0

Compressed bundles
File identification
MD5 033117662e69d5c94f97a0c4d13c043f
SHA1 beb08f78b9af3786c7a903e3a80acbdda16950a0
SHA256 1a907a140f7d7140ef203671f50d9ae37bce2d654d2df03f335ba6e973219dae
ssdeep
3072:+c4tmBW47DL5VG8OigGq1/sQ2HJFTYaCDTefV5EK7Zg4+sR7oO:/fBW828OaQSFV5r+O

authentihash 4a5635e048cb11df9822b94e0b65e44b3f1bdcf10506b6d5bdf9792f305446ef
imphash 98a6a1d20fd651b2f71160539007b748
File size 136.1 KB ( 139376 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID InstallShield setup (38.9%)
Win32 Executable MS Visual C++ (generic) (28.2%)
Win64 Executable (generic) (25.0%)
Win32 Executable (generic) (4.0%)
Generic Win/DOS Executable (1.8%)
Tags
pedll overlay

VirusTotal metadata
First submission 2016-09-13 09:38:22 UTC ( 2 years, 5 months ago )
Last submission 2016-12-28 10:47:23 UTC ( 2 years, 1 month ago )
File names IOYBwW7hwdP5EPIo.dll
PVRX3.exe
c2BwHrtql2.dll
hwsmHQrfrOVP.dll.3844.dr
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!