× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 563338fc32557aefb23fe85b62d16894e95c35c4eb7728eee5f526932b8ce910
File name: ativvaxx.dll
Detection ratio: 0 / 54
Analysis date: 2014-10-29 15:34:37 UTC ( 4 years, 4 months ago )
Antivirus Result Update
Ad-Aware 20141029
AegisLab 20141029
Yandex 20141028
AhnLab-V3 20141029
Antiy-AVL 20141029
Avast 20141029
AVG 20141029
Avira (no cloud) 20141029
AVware 20141029
Baidu-International 20141027
BitDefender 20141029
Bkav 20141027
ByteHero 20141029
CAT-QuickHeal 20141029
ClamAV 20141029
CMC 20141029
Comodo 20141029
Cyren 20141029
DrWeb 20141029
Emsisoft 20141029
ESET-NOD32 20141029
F-Prot 20141029
F-Secure 20141029
Fortinet 20141029
GData 20141029
Ikarus 20141029
Jiangmin 20141028
K7AntiVirus 20141029
K7GW 20141029
Kaspersky 20141029
Kingsoft 20141029
Malwarebytes 20141029
McAfee 20141029
McAfee-GW-Edition 20141028
Microsoft 20141029
eScan 20141029
NANO-Antivirus 20141029
Norman 20141029
nProtect 20141029
Qihoo-360 20141029
Rising 20141029
Sophos AV 20141029
SUPERAntiSpyware 20141029
Symantec 20141029
Tencent 20141029
TheHacker 20141028
TotalDefense 20141027
TrendMicro 20141029
TrendMicro-HouseCall 20141029
VBA32 20141029
VIPRE 20141029
ViRobot 20141029
Zillya 20141029
Zoner 20141029
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Native subsystem.
FileVersionInfo properties
Copyright
Copyright (C) 1998-2005 ATI Technologies Inc.

Publisher ATI Technologies Inc.
Product ATI Technologies Inc. Radeon Video Acceleration Universal Driver
Original name ativvaxx.dll
Internal name ativvaxx.dll
File version 6.14.10.0231
Description Radeon Video Acceleration Universal Driver
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2009-07-15 01:44:06
Entry Point 0x00112831
Number of sections 7
PE sections
PE imports
EngRestoreFloatingPointState
EngLoadModule
EngSetEvent
EngQueryPerformanceCounter
EngSaveFloatingPointState
EngDebugPrint
EngMapModule
EngWaitForSingleObject
RtlUnwind
RtlUnicodeToMultiByteN
RtlRaiseException
EngQueryLocalTime
EngDeleteEvent
EngFindImageProcAddress
EngUnmapFile
EngQueryPerformanceFrequency
EngMultiByteToUnicodeN
EngLoadModuleForWrite
EngAllocUserMem
EngMapFile
EngFreeModule
EngDeviceIoControl
EngCreateEvent
EngFreeUserMem
PE exports
Number of PE resources by type
RT_VERSION 1
Number of PE resources by language
ENGLISH US 1
PE resources
ExifTool file metadata
SpecialBuild
DevStudio Build

CodeSize
1241216

SubsystemVersion
5.0

InitializedDataSize
811776

ImageVersion
5.0

FileSubtype
0

FileVersionNumber
6.14.10.231

LanguageCode
English (U.S.)

FileFlagsMask
0x0000

Description
Radeon Windows 2000/XP Video Acceleration Universal Driver

FileDescription
Radeon Video Acceleration Universal Driver

CharacterSet
Windows, Latin1

LinkerVersion
7.1

FileOS
Windows NT 32-bit

PrivateBuild
Built by swtools on CNABCC04 on 07/14/09 at 21:43

MIMEType
application/octet-stream

LegalCopyright
Copyright (C) 1998-2005 ATI Technologies Inc.

FileVersion
6.14.10.0231

TimeStamp
2009:07:15 02:44:06+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
ativvaxx.dll

FileAccessDate
2014:10:29 16:35:54+01:00

ProductVersion
6.14.10.0231

UninitializedDataSize
0

OSVersion
5.0

FileCreateDate
2014:10:29 16:35:54+01:00

OriginalFilename
ativvaxx.dll

Subsystem
Native

MachineType
Intel 386 or later, and compatibles

CompanyName
ATI Technologies Inc.

BuildVersion
0231.01

LegalTrademarks
Radeon (TM) is a Trademark of ATI Technologies Inc.

ProductName
ATI Technologies Inc. Radeon Video Acceleration Universal Driver

ProductVersionNumber
6.14.10.231

EntryPoint
0x112831

ObjectFileType
Dynamic link library

Compressed bundles
File identification
MD5 91e7b9ed938624c8fa9ee12d3a37def0
SHA1 04df0adf2bd5fa494f1df17e6b67175d365796f3
SHA256 563338fc32557aefb23fe85b62d16894e95c35c4eb7728eee5f526932b8ce910
ssdeep
49152:kSMFPq6FQGTMb6bLqbj9YYsYwOrHdJBz5oNWley6FWFnD9ZV8ZtzVBjZYKqYf4Q5:DMFyIQk

authentihash c595688ec944b91628ac2021623bbd60a16e96cf1231710cb5b5622c185c763d
imphash 67e7a3cc21c0604ec00b2fd9ce305e13
File size 2.0 MB ( 2053888 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (native) Intel 80386 32-bit

TrID Win32 Dynamic Link Library (generic) (43.5%)
Win32 Executable (generic) (29.8%)
Generic Win/DOS Executable (13.2%)
DOS Executable Generic (13.2%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
Tags
pedll native

VirusTotal metadata
First submission 2009-09-14 22:31:57 UTC ( 9 years, 6 months ago )
Last submission 2009-09-14 22:31:57 UTC ( 9 years, 6 months ago )
File names ativvaxx.dll
ativvaxx.dll
ativvaxx.dll
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!