× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 21e2ac8a204ed4d580bd5bb91756bc9d36b1b93300456a8e5d13bdf91996d11d
File name: B09D373DA0E740F06A2000438EA5BD0073E3B503.tmp
Detection ratio: 0 / 42
Analysis date: 2012-07-12 22:29:44 UTC ( 6 years, 9 months ago )
Antivirus Result Update
AhnLab-V3 20120712
AntiVir 20120712
Antiy-AVL 20120712
Avast 20120712
AVG 20120712
BitDefender 20120712
ByteHero 20120626
CAT-QuickHeal 20120712
ClamAV 20120712
Commtouch 20120712
Comodo 20120712
DrWeb 20120712
Emsisoft 20120712
eSafe 20120712
F-Prot 20120712
F-Secure 20120713
Fortinet 20120712
GData 20120712
Ikarus 20120712
Jiangmin 20120711
K7AntiVirus 20120712
Kaspersky 20120712
McAfee 20120712
McAfee-GW-Edition 20120712
Microsoft 20120713
NOD32 20120712
Norman 20120712
nProtect 20120712
Panda 20120712
PCTools 20120712
Rising 20120712
Sophos AV 20120712
SUPERAntiSpyware 20120712
Symantec 20120712
TheHacker 20120711
TotalDefense 20120712
TrendMicro 20120713
TrendMicro-HouseCall 20120712
VBA32 20120712
VIPRE 20120712
ViRobot 20120712
VirusBuster 20120712
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
Authenticode signature block and FileVersionInfo properties
Copyright
Copyright (c) 2012 AVAST Software

Publisher AVAST Software
Product avast_ Antivirus
Original name aswUtil.dll
Internal name aswUtil
File version 7.0.1455.186
Description avast_ Utility library
Signing date 4:18 PM 7/4/2012
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2012-07-04 14:11:14
Entry Point 0x000026AE
Number of sections 5
PE sections
PE imports
OpenThreadToken, FreeSid, EqualSid, AllocateAndInitializeSid, GetTokenInformation, OpenProcessToken
DnsQuery_W, DnsRecordListFree
RaiseException, LoadLibraryA, InterlockedExchange, LocalAlloc, Sleep, InterlockedCompareExchange, TerminateProcess, UnhandledExceptionFilter, GetProcAddress, GetVersionExW, LoadLibraryW, FreeLibrary, GetSystemDirectoryW, GetLastError, WaitForSingleObject, GetExitCodeProcess, GetCurrentProcess, CloseHandle, GetCurrentThread, GetDriveTypeW, SetUnhandledExceptionFilter, IsDebuggerPresent, QueryPerformanceCounter, GetTickCount, GetCurrentThreadId, GetCurrentProcessId, GetSystemTimeAsFileTime, GetModuleHandleW
__0_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAE@XZ, __1_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAE@XZ, _resize@_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEXI@Z, __A_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAA_WI@Z
_encoded_null, _decode_pointer, _initterm_e, _initterm, _lock, _onexit, _except_handler4_common, _malloc_crt, _encode_pointer, free, _vsnwprintf, wcsncpy, memset, __CxxFrameHandler3, __dllonexit, _unlock, __clean_type_info_names_internal, _crt_debugger_hook, __CppXcptFilter, _adjust_fdiv, _amsg_exit, _snwprintf, wcsrchr
ShellExecuteExW
ExitWindowsEx
-, -, -
_basInitLibrary@4, _basProductInfo@0, _basFreeLibrary@0, _basGetLanguagePath@0, _basGetErrorString@12, _basGetErrorType@4, _CallOnSecureDesktop@12, _basFullscreenAppRunning@0
_tskPackerBits@8
__BCStr@@QAEPBDXZ, DSA_BlockVerify, __0CStr@@QAE@PB_W@Z, GetFileSignatureDetails, GetFileSignatureStatus, fsGetAvastProgramPath, DSA_FileVerify, __1CStr@@QAE@XZ
dep_osIsWinXPOrBetter, dep_osIsWow64, dep_fsEnableWow64FsRedirection, dep_secSetPrivilege, dep_strNormalToUnicode, dep_osIsWinVistaOrBetter
PE exports
ExifTool file metadata
SubsystemVersion
5.0

LinkerVersion
9.0

ImageVersion
5.0

FileSubtype
0

FileVersionNumber
7.0.1455.186

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x0017

CharacterSet
Unicode

InitializedDataSize
9728

FileOS
Win32

MIMEType
application/octet-stream

LegalCopyright
Copyright (c) 2011 AVAST Software

FileVersion
7.0.1455.186

TimeStamp
2012:07:04 16:11:14+02:00

FileType
Win32 DLL

PEType
PE32

InternalName
aswUtil

ProductVersion
7.0.1455.186

FileDescription
avast! Utility library

OSVersion
5.0

OriginalFilename
aswUtil.dll

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
AVAST Software

CodeSize
7680

ProductName
avast! Antivirus

ProductVersionNumber
7.0.1455.186

EntryPoint
0x26ae

ObjectFileType
Unknown

File identification
MD5 8e440bc2f6983e0051c8f867f22ca627
SHA1 7ba673e139ce0398c7bb2457d10923be6a5785a0
SHA256 21e2ac8a204ed4d580bd5bb91756bc9d36b1b93300456a8e5d13bdf91996d11d
ssdeep
384:8oqMKBoFS7RHFcxzFtLtwZwPq3Kmjj5WHr3mirILca6jhYYGueMVFmg:8oqr77jcDXed+iIILFmr

File size 26.7 KB ( 27296 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
Tags
pedll signed

VirusTotal metadata
First submission 2012-07-12 22:29:44 UTC ( 6 years, 9 months ago )
Last submission 2012-07-12 22:29:44 UTC ( 6 years, 9 months ago )
File names B09D373DA0E740F06A2000438EA5BD0073E3B503.tmp
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!