× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 40fb7445c77c0d9077ad4d43732a68fc451ddcac7650ba00196010b41438d46a
File name: libatk-1.0-0
Detection ratio: 0 / 67
Analysis date: 2018-11-14 02:33:38 UTC ( 3 months ago )
Antivirus Result Update
Ad-Aware 20181112
AegisLab 20181114
AhnLab-V3 20181114
Alibaba 20180921
ALYac 20181114
Antiy-AVL 20181114
Arcabit 20181114
Avast 20181114
Avast-Mobile 20181113
AVG 20181114
Avira (no cloud) 20181114
Babable 20180918
Baidu 20181112
BitDefender 20181114
Bkav 20181113
CAT-QuickHeal 20181113
ClamAV 20181114
CMC 20181113
CrowdStrike Falcon (ML) 20181022
Cybereason 20180225
Cylance 20181114
Cyren 20181114
DrWeb 20181114
eGambit 20181114
Emsisoft 20181114
Endgame 20181108
ESET-NOD32 20181113
F-Prot 20181114
F-Secure 20181114
Fortinet 20181114
GData 20181114
Ikarus 20181113
Sophos ML 20181108
Jiangmin 20181114
K7AntiVirus 20181113
K7GW 20181113
Kaspersky 20181113
Kingsoft 20181114
Malwarebytes 20181113
MAX 20181114
McAfee 20181113
McAfee-GW-Edition 20181113
Microsoft 20181114
eScan 20181114
NANO-Antivirus 20181114
Palo Alto Networks (Known Signatures) 20181114
Panda 20181113
Qihoo-360 20181114
Rising 20181114
SentinelOne (Static ML) 20181011
Sophos AV 20181113
SUPERAntiSpyware 20181114
Symantec 20181114
Symantec Mobile Insight 20181108
TACHYON 20181114
Tencent 20181114
TheHacker 20181113
TotalDefense 20181113
TrendMicro 20181114
TrendMicro-HouseCall 20181114
Trustlook 20181114
VBA32 20181113
VIPRE 20181113
ViRobot 20181113
Webroot 20181114
Yandex 20181113
Zillya 20181113
ZoneAlarm by Check Point 20181114
Zoner 20181114
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows command line subsystem.
FileVersionInfo properties
Copyright
Copyright © Sun Microsystems Inc.

Product atk
Original name libatk-1.0-0.dll
Internal name libatk-1.0-0
File version 1.30.0.0
Description atk
Packers identified
F-PROT UPX
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2011-06-14 03:24:29
Entry Point 0x0001FE20
Number of sections 3
PE sections
Overlays
MD5 ec2ee17380374b4cfa0d7eadc17519cf
File type ASCII text
Offset 35840
Size 14
Entropy 3.09
PE imports
VirtualProtect
VirtualFree
LoadLibraryA
VirtualAlloc
GetProcAddress
PE exports
Number of PE resources by type
RT_VERSION 1
Number of PE resources by language
ENGLISH US 1
PE resources
ExifTool file metadata
UninitializedDataSize
102400

InitializedDataSize
12288

ImageVersion
1.0

ProductName
atk

FileVersionNumber
1.30.0.0

LanguageCode
English (U.S.)

FileFlagsMask
0x0000

FileDescription
atk

CharacterSet
Unicode

LinkerVersion
2.56

FileTypeExtension
dll

OriginalFileName
libatk-1.0-0.dll

MIMEType
application/octet-stream

Subsystem
Windows command line

FileVersion
1.30.0.0

TimeStamp
2011:06:14 04:24:29+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
libatk-1.0-0

ProductVersion
1.30.0

SubsystemVersion
4.0

OSVersion
4.0

FileOS
Win32

LegalCopyright
Copyright Sun Microsystems Inc.

MachineType
Intel 386 or later, and compatibles

CompanyName
Sun Microsystems Inc.

CodeSize
28672

FileSubtype
0

ProductVersionNumber
1.30.0.0

EntryPoint
0x1fe20

ObjectFileType
Dynamic link library

CarbonBlack CarbonBlack acts as a surveillance camera for computers
Execution parents
Compressed bundles
File identification
MD5 69a166ff065d68b77ca70a30796157dd
SHA1 2338a965cc2725830e2ae67a4ac6bb307d4c537b
SHA256 40fb7445c77c0d9077ad4d43732a68fc451ddcac7650ba00196010b41438d46a
ssdeep
768:yVlTOt6e1nxFlB50CfbTQUtlloyF6LvDeOrgSLekBv:kxE6e7fftOLviOrgeekBv

authentihash 83e0849b975e14fdc5e193f6e7ea054f9de9c374f2ace03d97616c0e5f99c39f
imphash 07a691a564ad592a55f66bc3f1abff6c
File size 35.0 KB ( 35854 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (console) Intel 80386 32-bit

TrID UPX compressed Win32 Executable (38.2%)
Win32 EXE Yoda's Crypter (37.5%)
Win32 Dynamic Link Library (generic) (9.2%)
Win32 Executable (generic) (6.3%)
OS/2 Executable (generic) (2.8%)
Tags
via-tor pedll upx overlay

VirusTotal metadata
First submission 2011-06-15 19:52:47 UTC ( 7 years, 8 months ago )
Last submission 2018-03-27 03:12:18 UTC ( 10 months, 3 weeks ago )
File names em4kszome4sygdrk4z5evrv3gb6uyu33.dll
LIBATK-1.0-0.DLL
6C8B94B50E56E2508C98001A895628000D571215.dll
smona132268122662497924457
smona131427881412222222188
smona132521486352725930754
smona132100384520268952192
libatk_1.0_0.dll
file-2743151_dll
file-3259037_dll
filename
smona132555480278826918746
smona132762932533921785459
smona131623031872474637659
libatk-1.0-0.dll.tmp
libatk-1.0-0.dll
smona_40fb7445c77c0d9077ad4d43732a68fc451ddcac7650ba00196010b41438d46a.bin
69a166ff065d68b77ca70a30796157dd
libatk-1.0-0
smona131738789323842806328
smona131139552471927015669
smona131473293460658869393
libatk-1.0-0.dll
smona132581985935127421887
smona132778978716782121239
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!