× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 33a823995400f4d2b00d882560be00adc7f8ce18761e69a4c3405d806250b4fe
File name: Dragablz.dll
Detection ratio: 0 / 61
Analysis date: 2017-06-11 09:25:30 UTC ( 2 weeks, 3 days ago )
Antivirus Result Update
Ad-Aware 20170611
AegisLab 20170611
AhnLab-V3 20170610
Alibaba 20170609
ALYac 20170611
Antiy-AVL 20170611
Arcabit 20170611
Avast 20170611
AVG 20170611
Avira (no cloud) 20170610
AVware 20170611
Baidu 20170608
BitDefender 20170611
Bkav 20170610
CAT-QuickHeal 20170610
ClamAV 20170611
CMC 20170611
Comodo 20170611
CrowdStrike Falcon (ML) 20170420
Cyren 20170611
DrWeb 20170611
Emsisoft 20170611
Endgame 20170515
ESET-NOD32 20170611
F-Prot 20170611
F-Secure 20170611
Fortinet 20170611
GData 20170611
Ikarus 20170611
Invincea 20170607
Jiangmin 20170611
K7AntiVirus 20170611
K7GW 20170611
Kaspersky 20170611
Kingsoft 20170611
Malwarebytes 20170611
McAfee 20170611
McAfee-GW-Edition 20170610
Microsoft 20170610
eScan 20170611
NANO-Antivirus 20170611
nProtect 20170611
Palo Alto Networks (Known Signatures) 20170611
Panda 20170611
Qihoo-360 20170611
Rising 20170611
SentinelOne (Static ML) 20170516
Sophos 20170611
SUPERAntiSpyware 20170611
Symantec 20170610
Symantec Mobile Insight 20170608
Tencent 20170611
TheHacker 20170611
TrendMicro 20170611
TrendMicro-HouseCall 20170611
Trustlook 20170611
VBA32 20170609
VIPRE 20170611
ViRobot 20170611
Webroot 20170611
WhiteArmor 20170608
Yandex 20170608
Zillya 20170610
ZoneAlarm by Check Point 20170611
Zoner 20170611
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows command line subsystem.
FileVersionInfo properties
Copyright
Copyright © 2014

Product Dragablz
Original name Dragablz.dll
Internal name Dragablz.dll
File version 0.0.3.186
Description Dragablz
Comments Dragable tabable
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2017-02-15 10:35:11
Entry Point 0x0003AAD6
Number of sections 3
.NET details
Module Version ID f13abbac-4b48-4ccb-aa1e-d47333d358e0
PE sections
PE imports
_CorDllMain
Number of PE resources by type
RT_VERSION 1
Number of PE resources by language
NEUTRAL 1
PE resources
Debug information
ExifTool file metadata
FileDescription
Dragablz

Comments
Dragable tabable

LinkerVersion
48.0

ImageVersion
0.0

ProductName
Dragablz

FileVersionNumber
0.0.3.186

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
1536

FileTypeExtension
dll

OriginalFileName
Dragablz.dll

MIMEType
application/octet-stream

Subsystem
Windows command line

FileVersion
0.0.3.186

TimeStamp
2017:02:15 11:35:11+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
Dragablz.dll

SubsystemVersion
6.0

ProductVersion
0.0.3.186

UninitializedDataSize
0

OSVersion
4.0

FileOS
Win32

LegalCopyright
Copyright 2014

MachineType
Intel 386 or later, and compatibles

CompanyName
Mulholland Software Ltd/James Willock

CodeSize
232448

FileSubtype
0

ProductVersionNumber
0.0.3.186

EntryPoint
0x3aad6

ObjectFileType
Dynamic link library

AssemblyVersion
0.0.3.186

CarbonBlack CarbonBlack acts as a surveillance camera for computers
While monitoring an end-user machine in-the-wild, CarbonBlack noticed the following files in execution wrote this sample to disk.
Compressed bundles
File identification
MD5 183148cb8d573eb5bbe2ce9049d91d4f
SHA1 01b3eb6a647593dfb9920906d1de26dbd9f48414
SHA256 33a823995400f4d2b00d882560be00adc7f8ce18761e69a4c3405d806250b4fe
ssdeep
6144:avm3GsvL3AFzP9Pfofr4vMMcf6fIf7fWX1:agj2z1Pfofr4of6fIf7fWX

authentihash d4c9ddaeb10f74d300a89549acc6afa175c5c2605970bb463e56be9fb119ae35
imphash dae02f32a21e03ce65412f6e56942daa
File size 229.0 KB ( 234496 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (console) Intel 80386 Mono/.Net assembly

TrID Win64 Executable (generic) (49.4%)
Windows screen saver (23.4%)
Win32 Dynamic Link Library (generic) (11.7%)
Win32 Executable (generic) (8.0%)
Generic Win/DOS Executable (3.5%)
Tags
assembly pedll

VirusTotal metadata
First submission 2017-02-23 06:26:44 UTC ( 4 months ago )
Last submission 2017-06-11 09:25:30 UTC ( 2 weeks, 3 days ago )
File names dragablz.dll
Dragablz.dll
Dragablz.dll
Dragablz.dll.deploy
_F14795A33210E7117B24CD74232D16B1
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!