× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 2a2348ca0a8f3bc5c3307b1d83c264e108a51bf5db18dca16388ddc6e6b3caca
File name: vt-upload-nDrc9N
Detection ratio: 0 / 51
Analysis date: 2014-03-30 09:33:18 UTC ( 4 years, 12 months ago )
Antivirus Result Update
Ad-Aware 20140330
AegisLab 20140330
Yandex 20140329
AhnLab-V3 20140329
AntiVir 20140330
Antiy-AVL 20140330
Avast 20140330
AVG 20140330
Baidu-International 20140330
BitDefender 20140330
Bkav 20140329
ByteHero 20140330
CAT-QuickHeal 20140329
ClamAV 20140330
CMC 20140328
Commtouch 20140330
Comodo 20140330
DrWeb 20140329
Emsisoft 20140330
ESET-NOD32 20140329
F-Prot 20140330
F-Secure 20140330
Fortinet 20140330
GData 20140330
Ikarus 20140330
Jiangmin 20140330
K7AntiVirus 20140328
K7GW 20140328
Kaspersky 20140330
Kingsoft 20140330
Malwarebytes 20140330
McAfee 20140330
McAfee-GW-Edition 20140329
Microsoft 20140330
eScan 20140330
NANO-Antivirus 20140330
Norman 20140329
nProtect 20140330
Panda 20140329
Qihoo-360 20140330
Rising 20140329
Sophos AV 20140330
SUPERAntiSpyware 20140329
Symantec 20140330
TheHacker 20140329
TotalDefense 20140329
TrendMicro 20140330
TrendMicro-HouseCall 20140330
VBA32 20140328
VIPRE 20140330
ViRobot 20140330
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
© ?????????? ??????????. ??? ????? ????????.

Publisher ?????????? ??????????
Product ???????????? ??????? Microsoft® Windows®
Original name shimgvw.dll
Internal name ShImgVw.dll
File version 6.00.2900.6072 (xpsp_sp3_qfe.110121-1719)
Description ????????? ????????? ??????????? ? ??????
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2011-01-21 14:42:23
Entry Point 0x0001A191
Number of sections 4
PE sections
PE imports
RegCreateKeyExW
RegDeleteValueW
RegCloseKey
RegSetValueExW
RegQueryInfoKeyW
RegQueryValueExA
RegEnumValueW
RegOpenKeyExW
RegEnumKeyExW
RegOpenKeyW
RegDeleteKeyW
RegOpenKeyExA
RegQueryValueExW
SetGraphicsMode
SetMapMode
CreateFontIndirectW
PatBlt
SetStretchBltMode
CreatePen
SaveDC
GetPaletteEntries
CreateRectRgnIndirect
LPtoDP
CombineRgn
PlayMetaFile
ModifyWorldTransform
Rectangle
CreateMetaFileW
GetDeviceCaps
CloseMetaFile
LineTo
DeleteDC
InvertRgn
SetBkMode
SetLayout
SetMetaFileBitsEx
SetWorldTransform
CreateSolidBrush
GetClipBox
BitBlt
CreateDIBSection
RealizePalette
SetTextColor
DPtoLP
CreatePatternBrush
ExtTextOutW
CreateBitmap
MoveToEx
GetStockObject
SetViewportOrgEx
SelectPalette
UnrealizeObject
SelectClipRgn
CreateCompatibleDC
StretchDIBits
SetROP2
CreateRectRgn
SelectObject
SetRectRgn
SetWindowExtEx
RestoreDC
SetWindowOrgEx
Polyline
SetViewportExtEx
SetBkColor
DeleteObject
CreateCompatibleBitmap
DeleteMetaFile
FileTimeToSystemTime
WaitForSingleObject
HeapDestroy
ReplaceFileW
GetFileAttributesW
DeleteCriticalSection
GetCurrentProcess
LocalAlloc
GetFileInformationByHandle
lstrcatW
GetLocaleInfoW
WideCharToMultiByte
LoadLibraryW
InterlockedExchange
GetTempPathW
GetSystemTimeAsFileTime
FreeLibrary
LocalFree
FormatMessageW
InitializeCriticalSection
LoadResource
InterlockedDecrement
SetFileAttributesW
SetLastError
GetModuleFileNameW
HeapAlloc
lstrcmpiW
LoadLibraryExA
DelayLoadFailureHook
UnhandledExceptionFilter
LoadLibraryExW
MultiByteToWideChar
FlushInstructionCache
SetUnhandledExceptionFilter
MulDiv
TerminateProcess
GlobalAlloc
LocalFileTimeToFileTime
GetCurrentThreadId
InterlockedIncrement
HeapFree
EnterCriticalSection
lstrcmpiA
SetEvent
QueryPerformanceCounter
GetTickCount
DisableThreadLibraryCalls
GetVersionExA
LoadLibraryA
GetWindowsDirectoryW
DeleteFileW
GetProcAddress
GetProcessHeap
GetTempFileNameW
lstrcpyW
GetFileSizeEx
lstrcmpA
lstrcpyA
ResetEvent
GetUserDefaultLCID
CreateFileW
CreateEventA
LeaveCriticalSection
GetLastError
SystemTimeToFileTime
GetShortPathNameW
lstrlenA
GlobalFree
GlobalUnlock
lstrlenW
SizeofResource
CompareFileTime
GetCurrentProcessId
SetFileTime
InterlockedCompareExchange
lstrcpynW
GetModuleHandleA
ReadFile
CloseHandle
lstrcpynA
GlobalLock
GetModuleHandleW
GetFileAttributesExW
GetLongPathNameW
FindResourceW
VirtualFree
VirtualAlloc
SysStringLen
SysAllocString
SafeArrayCreate
SafeArrayGetElemsize
OleCreatePropertyFrame
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayUnaccessData
SafeArrayDestroy
SafeArrayGetUBound
SafeArrayCreateVector
LoadTypeLib
SysFreeString
VariantInit
LoadRegTypeLib
VariantChangeType
VarUI4FromStr
SystemTimeToVariantTime
SysAllocStringLen
RegisterTypeLib
VariantClear
SafeArrayGetDim
DragQueryFileW
Ord(645)
SHAddToRecentDocs
SHGetFileInfoW
SHBindToParent
SHChangeNotify
SHFileOperationW
Ord(182)
Ord(644)
Ord(749)
Ord(17)
ShellExecuteExW
Ord(2)
Ord(750)
SHGetDesktopFolder
Ord(4)
Ord(16)
Ord(155)
Ord(18)
Ord(28)
SHSetValueW
Ord(217)
Ord(270)
SHGetValueA
Ord(60)
SHGetInverseCMAP
StrRetToBufW
SHRegGetUSValueW
SHCreateStreamOnFileEx
SHStrDupA
Ord(75)
PathFindExtensionW
Ord(302)
SHStrDupW
Ord(174)
SHGetValueW
Ord(24)
StrChrW
wnsprintfW
PathFileExistsW
Ord(168)
Ord(165)
PathMatchSpecW
Ord(496)
StrCmpIW
Ord(219)
SHCreateShellPalette
PathRemoveExtensionW
Ord(157)
Ord(477)
Ord(476)
SHDeleteKeyW
Ord(346)
PathRemoveFileSpecW
StrCatBuffW
StrToIntExW
SHRegSetPathW
StrStrIW
Ord(116)
AssocQueryStringW
Ord(425)
Ord(158)
Ord(176)
Ord(193)
PathRenameExtensionW
StrDupW
Ord(294)
PathFindFileNameW
wnsprintfA
Ord(191)
StrCpyNW
Ord(197)
SHDeleteEmptyKeyW
SHReleaseThreadRef
PathIsURLW
Ord(16)
Ord(215)
Ord(497)
SHDeleteKeyA
SHSetValueA
Ord(41)
Ord(199)
MapWindowPoints
SetWindowRgn
SetMenuDefaultItem
DestroyMenu
PostQuitMessage
SetWindowPos
IsWindow
ClientToScreen
SetActiveWindow
GetDC
GetAsyncKeyState
ReleaseDC
SendMessageW
GetClientRect
DrawTextW
SetScrollPos
GetWindowTextW
GetWindowTextLengthW
MsgWaitForMultipleObjects
DestroyWindow
GetParent
UpdateWindow
EqualRect
GetMessageW
ShowWindow
SetDlgItemInt
PeekMessageW
InsertMenuItemW
SetWindowPlacement
TranslateMessage
GetDlgItemInt
LoadAcceleratorsW
LoadStringA
GetWindowPlacement
LoadStringW
IsIconic
TrackPopupMenuEx
GetWindowLongA
SetTimer
FillRect
CopyRect
GetSysColorBrush
CreateWindowExW
GetWindowLongW
CharNextW
IsChild
SetFocus
BeginPaint
OffsetRect
DefWindowProcW
KillTimer
CharNextA
TrackMouseEvent
GetClassInfoExW
GetSystemMetrics
SetWindowLongW
GetWindowRect
InflateRect
SetCapture
ReleaseCapture
PostMessageW
EndDialog
CreatePopupMenu
PtInRect
SetWindowTextW
GetDCEx
GetDlgItem
ScreenToClient
LoadCursorA
TrackPopupMenu
PostThreadMessageW
GetMenuItemCount
DestroyAcceleratorTable
GetMenuState
LoadCursorW
LoadIconW
DispatchMessageW
InsertMenuW
SetForegroundWindow
GetCursorPos
EndPaint
EnableWindow
IntersectRect
GetScrollInfo
FindWindowW
GetCapture
RemoveMenu
MessageBoxW
RegisterClassExW
SetRectEmpty
DialogBoxParamW
AppendMenuW
AdjustWindowRectEx
SendMessageTimeoutW
GetSysColor
RegisterClipboardFormatW
SetScrollInfo
GetKeyState
DestroyIcon
IsWindowVisible
GetDesktopWindow
SystemParametersInfoW
UnionRect
MonitorFromWindow
FrameRect
SetRect
InvalidateRect
wsprintfA
CallWindowProcW
IsRectEmpty
GetFocus
wsprintfW
TranslateAcceleratorW
SetCursor
GdipGetEncoderParameterList
GdipGetImageHorizontalResolution
GdipGetImageEncodersSize
GdipImageRotateFlip
GdipLoadImageFromStreamICM
GdipGetPropertyItemSize
GdipGetPropertyCount
GdipGetImagePixelFormat
GdipGetPropertyIdList
GdipGetEncoderParameterListSize
GdipCreateBitmapFromScan0
GdiplusShutdown
GdipLoadImageFromStream
GdipImageGetFrameDimensionsCount
GdipDisposeImage
GdipImageSelectActiveFrame
GdipBitmapSetResolution
GdipCreateHalftonePalette
GdipDeleteGraphics
GdipSaveAddImage
GdipGetImageThumbnail
GdipGetImageBounds
GdipGetPropertyItem
GdipCreateFromHDC
GdipImageGetFrameDimensionsList
GdipGetImageEncoders
GdipImageGetFrameCount
GdipGetImageWidth
GdipCreateBitmapFromHBITMAP
GdipAlloc
GdipGetImageVerticalResolution
GdipDrawImageRectI
GdipDrawImageRectRectI
GdipSetPropertyItem
GdipSetInterpolationMode
GdipRemovePropertyItem
GdiplusStartup
GdipGetImageFlags
GdipFree
GdipGetImageDecodersSize
GdipGetImageHeight
GdipCloneImage
GdipReleaseDC
GdipSetPageUnit
GdipGetImageRawFormat
GdipGetImageGraphicsContext
GdipGetImageDecoders
GdipSaveImageToStream
_except_handler3
malloc
sscanf
realloc
free
_ftol
OleUninitialize
CoUninitialize
CoMarshalInterThreadInterfaceInStream
CreateStreamOnHGlobal
StringFromCLSID
ReleaseStgMedium
OleRegGetMiscStatus
RegisterDragDrop
CoGetInterfaceAndReleaseStream
RevokeDragDrop
CreateOleAdviseHolder
CreateILockBytesOnHGlobal
CoRegisterClassObject
OleRegGetUserType
OleInitialize
CoTaskMemRealloc
CoCreateInstance
OleRegEnumVerbs
StgOpenStorage
CoTaskMemAlloc
CoUnmarshalInterface
CoInitializeEx
CreateDataAdviseHolder
CoRevokeClassObject
StgCreateDocfileOnILockBytes
CLSIDFromProgID
CreateBindCtx
PropVariantClear
CoTaskMemFree
PE exports
Number of PE resources by type
RT_ICON 39
RT_STRING 19
RT_BITMAP 8
RT_GROUP_ICON 6
RT_GROUP_CURSOR 4
RT_CURSOR 4
RT_HTML 2
AVI 2
RT_ACCELERATOR 2
RT_DIALOG 1
RT_MANIFEST 1
TYPELIB 1
REGINST 1
RT_VERSION 1
REGISTRY 1
Number of PE resources by language
RUSSIAN 92
PE resources
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
7.1

ImageVersion
5.1

FileSubtype
0

FileVersionNumber
6.0.2900.6072

LanguageCode
Russian

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
1731072

FileOS
Windows NT 32-bit

MIMEType
application/octet-stream

LegalCopyright
. .

FileVersion
6.00.2900.6072 (xpsp_sp3_qfe.110121-1719)

TimeStamp
2011:01:21 15:42:23+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
ShImgVw.dll

FileAccessDate
2014:03:30 10:34:04+01:00

ProductVersion
6.00.2900.6072

SubsystemVersion
4.1

OSVersion
5.1

FileCreateDate
2014:03:30 10:34:04+01:00

OriginalFilename
shimgvw.dll

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CodeSize
176128

ProductName
Microsoft Windows

ProductVersionNumber
6.0.2900.6072

EntryPoint
0x1a191

ObjectFileType
Dynamic link library

File identification
MD5 8225ef0b7906be3d3d8bc68d8b38dea6
SHA1 75d2aab95ad2d982a544459bee280415fd8b018b
SHA256 2a2348ca0a8f3bc5c3307b1d83c264e108a51bf5db18dca16388ddc6e6b3caca
ssdeep
6144:1tRffkmNE+gw3VCCbn3Crg9yvPkQr3yN+FHA9poHEAYUnmd8S4i8jBUQjC:DRfNN3tCK3WDPTyN+Fg9kEAe

imphash 2df30d9af7193381fc4be993430fb68d
File size 1.8 MB ( 1908224 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID DirectShow filter (60.4%)
Windows ActiveX control (34.9%)
Win32 Dynamic Link Library (generic) (1.9%)
Win32 Executable (generic) (1.3%)
Generic Win/DOS Executable (0.6%)
Tags
pedll

VirusTotal metadata
First submission 2014-03-30 09:33:18 UTC ( 4 years, 12 months ago )
Last submission 2014-03-30 09:33:18 UTC ( 4 years, 12 months ago )
File names shimgvw.dll
ShImgVw.dll
vt-upload-nDrc9N
shimgvw.dll
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!