× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 2fedcf3051e910969a3d7b7c66e6e20eb8c5b409567a28c50e54e220e91ace55
File name: DeviceInfo.dll
Detection ratio: 0 / 57
Analysis date: 2016-09-21 14:57:33 UTC ( 2 years, 2 months ago )
Antivirus Result Update
Ad-Aware 20160921
AegisLab 20160921
AhnLab-V3 20160921
Alibaba 20160921
ALYac 20160921
Antiy-AVL 20160921
Arcabit 20160921
Avast 20160921
AVG 20160921
Avira (no cloud) 20160921
AVware 20160921
Baidu 20160921
BitDefender 20160921
Bkav 20160921
CAT-QuickHeal 20160921
ClamAV 20160921
CMC 20160921
Comodo 20160920
CrowdStrike Falcon (ML) 20160725
Cyren 20160921
DrWeb 20160921
Emsisoft 20160921
ESET-NOD32 20160921
F-Prot 20160921
F-Secure 20160921
Fortinet 20160921
GData 20160921
Ikarus 20160921
Sophos ML 20160917
Jiangmin 20160921
K7AntiVirus 20160921
K7GW 20160921
Kaspersky 20160921
Kingsoft 20160921
Malwarebytes 20160921
McAfee 20160921
McAfee-GW-Edition 20160921
Microsoft 20160921
eScan 20160921
NANO-Antivirus 20160921
nProtect 20160921
Panda 20160921
Qihoo-360 20160921
Rising 20160921
Sophos AV 20160921
SUPERAntiSpyware 20160920
Symantec 20160921
Tencent 20160921
TheHacker 20160920
TrendMicro 20160921
TrendMicro-HouseCall 20160921
VBA32 20160921
VIPRE 20160921
ViRobot 20160921
Yandex 20160920
Zillya 20160921
Zoner 20160921
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows command line subsystem.
FileVersionInfo properties
Copyright
Copyright © 2009

Product DeviceInfo
Original name DeviceInfo.dll
Internal name DeviceInfo.dll
File version 1.0.0.11
Description DeviceInfo
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2011-07-12 05:53:12
Entry Point 0x0000845E
Number of sections 3
.NET details
Module Version ID 2503f33b-055e-4d07-b8cc-01e390c4c922
TypeLib ID b38d9dd7-2f43-4152-a34f-bb8b96fd38f6
PE sections
PE imports
_CorDllMain
Number of PE resources by type
RT_VERSION 1
Number of PE resources by language
NEUTRAL 1
PE resources
Debug information
ExifTool file metadata
UninitializedDataSize
0

InitializedDataSize
1536

ImageVersion
0.0

ProductName
DeviceInfo

FileVersionNumber
1.0.0.11

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
DeviceInfo

CharacterSet
Unicode

LinkerVersion
8.0

FileTypeExtension
dll

OriginalFileName
DeviceInfo.dll

MIMEType
application/octet-stream

Subsystem
Windows command line

FileVersion
1.0.0.11

TimeStamp
2011:07:12 06:53:12+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
DeviceInfo.dll

ProductVersion
1.0.0.11

SubsystemVersion
4.0

OSVersion
4.0

FileOS
Win32

LegalCopyright
Copyright 2009

MachineType
Intel 386 or later, and compatibles

CodeSize
26112

FileSubtype
0

ProductVersionNumber
1.0.0.11

EntryPoint
0x845e

ObjectFileType
Dynamic link library

AssemblyVersion
1.0.0.11

CarbonBlack CarbonBlack acts as a surveillance camera for computers
While monitoring an end-user machine in-the-wild, CarbonBlack noticed the following files in execution wrote this sample to disk.
Compressed bundles
File identification
MD5 a294759015da0a32a4eef680430a09fb
SHA1 52c422d366ce7cd18156a3de01eb3bf044e962c9
SHA256 2fedcf3051e910969a3d7b7c66e6e20eb8c5b409567a28c50e54e220e91ace55
ssdeep
384:1G3p8P1CLy/Y9BAYJq/Q8IscsLq7zSmTYmKShE935ApTpgIJdPy4i/FsENivGyiH:vQoc2gzBTYmKSh+OJdq4wiipr4lgEG

authentihash cd164610f9c43e8fc4e39cfd483f11e3e12dd6d65110d941a3fb4b8af44ebc23
imphash dae02f32a21e03ce65412f6e56942daa
File size 27.5 KB ( 28160 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (console) Intel 80386 32-bit Mono/.Net assembly

TrID Generic .NET DLL/Assembly (94.0%)
Win32 Dynamic Link Library (generic) (2.5%)
Win32 Executable (generic) (1.7%)
Generic Win/DOS Executable (0.7%)
DOS Executable Generic (0.7%)
Tags
assembly pedll

VirusTotal metadata
First submission 2012-02-08 15:51:20 UTC ( 6 years, 10 months ago )
Last submission 2012-02-08 15:51:20 UTC ( 6 years, 10 months ago )
File names DeviceInfo.dll
616F5D77006205366E070092B6772B00C18B8E74.dll
DeviceInfo.dll
DeviceInfo.dll
klccfu3gzz6ndakwuppad2z36bcosywj.dll
DeviceInfo.dll
aa
deviceinfo.dll
DeviceInfo.dll
DeviceInfo.dll
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!