× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 5916c159345858808da9b709349ab6364605da0a27c0392df0cc78ba824598e7
File name: 7.dll
Detection ratio: 4 / 57
Analysis date: 2015-05-21 08:50:15 UTC ( 2 years, 7 months ago ) View latest
Antivirus Result Update
Bkav HW32.Packed.9FEC 20150520
Kaspersky UDS:DangerousObject.Multi.Generic 20150521
Qihoo-360 HEUR/QVM40.1.Malware.Gen 20150521
Tencent Trojan.Win32.Qudamah.Gen.23 20150521
Ad-Aware 20150521
AegisLab 20150521
Yandex 20150520
AhnLab-V3 20150520
Alibaba 20150521
ALYac 20150521
Antiy-AVL 20150521
Avast 20150521
AVG 20150521
Avira (no cloud) 20150521
AVware 20150521
Baidu-International 20150521
BitDefender 20150521
ByteHero 20150521
CAT-QuickHeal 20150520
ClamAV 20150521
CMC 20150520
Comodo 20150521
Cyren 20150521
DrWeb 20150521
Emsisoft 20150521
ESET-NOD32 20150521
F-Prot 20150521
F-Secure 20150521
Fortinet 20150521
GData 20150521
Ikarus 20150521
Jiangmin 20150519
K7AntiVirus 20150521
K7GW 20150521
Kingsoft 20150521
Malwarebytes 20150521
McAfee 20150521
McAfee-GW-Edition 20150521
Microsoft 20150520
eScan 20150521
NANO-Antivirus 20150521
Norman 20150521
nProtect 20150520
Panda 20150520
Rising 20150520
Sophos AV 20150521
SUPERAntiSpyware 20150521
Symantec 20150521
TheHacker 20150520
TotalDefense 20150520
TrendMicro 20150521
TrendMicro-HouseCall 20150521
VBA32 20150520
VIPRE 20150521
ViRobot 20150521
Zillya 20150520
Zoner 20150520
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows command line subsystem.
FileVersionInfo properties
Copyright
Copyright © 2000 - 2001 S3/Diamond Multimedia

Publisher S3/Diamond Multimedia
Product Diamond Rio800
Original name spRio800.dll
File version 1.1.2.1
Description MDM Device Interface for Rio 800 device.
Comments Media Device Manager for Rio 800 device
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2015-05-21 07:18:43
Entry Point 0x00051200
Number of sections 4
PE sections
PE imports
ClusterGroupCloseEnum
ClusterEnum
ClusterNodeControl
SetBkColor
CreateToolhelp32Snapshot
GetDriveTypeW
ReleaseMutex
ScrollConsoleScreenBufferA
ReplaceFileW
GetDateFormatA
CreateTimerQueue
LocalAlloc
WriteConsoleOutputAttribute
GetVolumeInformationW
VerifyVersionInfoA
SetErrorMode
GetFileInformationByHandle
QueryMemoryResourceNotification
GetLocaleInfoW
GetFileTime
EnumCalendarInfoExW
WritePrivateProfileStructA
InterlockedExchange
FindNextVolumeMountPointW
GetThreadTimes
GetConsoleSelectionInfo
FreeLibrary
LocalFree
TransmitCommChar
FreeLibraryAndExitThread
UnhandledExceptionFilter
OutputDebugStringW
GlobalHandle
EnumDateFormatsA
QueueUserWorkItem
GetStringTypeExA
EnumUILanguagesW
VerLanguageNameA
WriteProcessMemory
CancelTimerQueueTimer
FlushFileBuffers
FlushViewOfFile
SetConsoleScreenBufferSize
FillConsoleOutputCharacterW
LoadLibraryExA
Module32First
MapViewOfFileEx
CreateMutexA
SetEnvironmentVariableW
SetNamedPipeHandleState
GetFirmwareEnvironmentVariableA
CreateSemaphoreW
ConvertDefaultLocale
ClearCommError
DecodePointer
GlobalAddAtomA
ConvertThreadToFiber
GlobalAlloc
DebugActiveProcess
ChangeTimerQueueTimer
LocalCompact
SetHandleCount
GetThreadPriorityBoost
SetTapeParameters
SetEvent
QueryPerformanceCounter
GetVersionExA
LoadLibraryA
ConvertFiberToThread
UnlockFile
SystemTimeToFileTime
CreateDirectoryA
GenerateConsoleCtrlEvent
BackupWrite
GetProcAddress
AssignProcessToJobObject
lstrcpynA
SetThreadContext
lstrcpyA
CreateMemoryResourceNotification
IsValidLanguageGroup
GetBinaryTypeA
EscapeCommFunction
GetTimeZoneInformation
ReadConsoleOutputAttribute
GetLastError
FlushConsoleInputBuffer
GetShortPathNameW
GetCommModemStatus
GetConsoleCP
lstrlenW
Process32NextW
SetupComm
FileTimeToLocalFileTime
GetCurrentDirectoryW
ProcessIdToSessionId
MapUserPhysicalPages
ClearCommBreak
InterlockedCompareExchange
OpenMutexA
SetConsoleTitleW
Heap32ListNext
RaiseException
ReleaseSemaphore
MapViewOfFile
SetFilePointer
SetTimerQueueTimer
GlobalFlags
DeleteAtom
EnumResourceTypesW
PeekConsoleInputA
GetModuleHandleW
GetLongPathNameW
WriteConsoleOutputCharacterA
DnsHostnameToComputerNameA
OpenEventA
GetOEMCP
VarR8FromBool
VarR4FromCy
VarCyRound
VarBoolFromI1
VarI4FromR4
DrawEdge
InSendMessageEx
EnableWindow
GetTitleBarInfo
RemovePropW
GetProcessWindowStation
InvalidateRect
setlocale
memset
fclose
wcstok
wcstol
swscanf
toupper
fgets
fflush
iswgraph
strncat
fwscanf
qsort
wcsncat
iswalpha
strtol
getenv
iswascii
wcscspn
wcsncmp
wscanf
memcpy
towupper
labs
remove
fgetws
freopen
iswspace
strftime
RtlCaptureContext
PdhEnumObjectsA
PdhOpenQueryA
PdhGetCounterInfoW
PdhRemoveCounter
PdhGetCounterInfoA
PdhUpdateLogA
RevokeBindStatusCallback
URLDownloadToFileA
URLOpenBlockingStreamA
PE exports
Number of PE resources by type
RT_STRING 8
RT_VERSION 1
Number of PE resources by language
ENGLISH US 9
PE resources
ExifTool file metadata
UninitializedDataSize
4096

Comments
Media Device Manager for Rio 800 device

LinkerVersion
8.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.1.2.1

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
20480

EntryPoint
0x51200

OriginalFileName
spRio800.dll

MIMEType
application/octet-stream

LegalCopyright
Copyright 2000 - 2001 S3/Diamond Multimedia

FileVersion
1.1.2.1

TimeStamp
2015:05:21 08:18:43+01:00

FileType
Win32 DLL

PEType
PE32

SubsystemVersion
4.0

ProductVersion
1.1.2.1

FileDescription
MDM Device Interface for Rio 800 device.

OSVersion
4.0

FileOS
Windows 32-bit

Subsystem
Windows command line

MachineType
Intel 386 or later, and compatibles

CompanyName
S3/Diamond Multimedia

CodeSize
335872

ProductName
Diamond Rio800

ProductVersionNumber
1.1.2.1

FileTypeExtension
dll

ObjectFileType
Executable application

File identification
MD5 56305283d26e66b81afcbcb6f0e9b9b4
SHA1 25bd8e6fcfb347c1421d3398550dd6e7962a3a7a
SHA256 5916c159345858808da9b709349ab6364605da0a27c0392df0cc78ba824598e7
ssdeep
6144:hIQVxtN4UwsmkAumuvWQLPFOdcyo6+lfWN0On7vCp7JQiRHYSMQp5F4:h5r4Lsmk4ihFO1ocNR76plQiq1QrF

authentihash 8b051d73180a2b38904d8495d802c0ed924e14bbeb1ba5be2db47bd9f548a4d8
imphash 2dfed48829b93424f9c087f8a254ebe0
File size 348.0 KB ( 356352 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (console) Intel 80386 32-bit

TrID Win32 Executable (generic) (52.9%)
Generic Win/DOS Executable (23.5%)
DOS Executable Generic (23.4%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
Tags
pedll

VirusTotal metadata
First submission 2015-05-21 08:21:06 UTC ( 2 years, 7 months ago )
Last submission 2015-05-21 08:50:15 UTC ( 2 years, 7 months ago )
File names 7.dll
spRio800.dll
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!