× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 5c001c9c42e111127e0f1d85f39b78b2355c64c8c4e12c66d07c748a445d0dcf
File name: PackUpdater.dll
Detection ratio: 0 / 46
Analysis date: 2012-12-10 02:25:01 UTC ( 6 years, 3 months ago )
Antivirus Result Update
Yandex 20121209
AhnLab-V3 20121209
AntiVir 20121210
Antiy-AVL 20121204
Avast 20121210
AVG 20121210
BitDefender 20121210
ByteHero 20121130
CAT-QuickHeal 20121209
ClamAV 20121209
Commtouch 20121209
Comodo 20121210
DrWeb 20121210
Emsisoft 20121210
eSafe 20121205
ESET-NOD32 20121209
F-Prot 20121209
F-Secure 20121210
Fortinet 20121210
GData 20121210
Ikarus 20121210
Jiangmin 20121209
K7AntiVirus 20121208
Kaspersky 20121210
Kingsoft 20121206
Malwarebytes 20121210
McAfee 20121210
McAfee-GW-Edition 20121209
Microsoft 20121210
eScan 20121210
NANO-Antivirus 20121210
Norman 20121209
nProtect 20121210
Panda 20121209
PCTools 20121210
Rising 20121207
Sophos AV 20121210
SUPERAntiSpyware 20121209
Symantec 20121210
TheHacker 20121210
TotalDefense 20121209
TrendMicro 20121210
TrendMicro-HouseCall 20121210
VBA32 20121207
VIPRE 20121210
ViRobot 20121209
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
(c) 2011 Mataes, 2007 ZERO_BiT

Product PackUpdater (Unicode)
Original name PackUpdater.dll
Internal name PackUpdater (Unicode)
Description Simple updater for Miranda IM premodified packs.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2011-12-03 14:53:40
Entry Point 0x000027CE
Number of sections 5
PE sections
PE imports
GetLastError
InitializeCriticalSectionAndSpinCount
HeapFree
GetSystemTimeAsFileTime
EnterCriticalSection
LCMapStringW
SetHandleCount
GetModuleFileNameW
GetConsoleCP
GetOEMCP
QueryPerformanceCounter
IsDebuggerPresent
EncodePointer
TlsAlloc
GetEnvironmentStringsW
FlushFileBuffers
GetFileAttributesW
RtlUnwind
lstrlenW
GetStdHandle
GetACP
DeleteCriticalSection
GetCurrentProcess
IsProcessorFeaturePresent
GetConsoleMode
DecodePointer
GetCurrentProcessId
WriteConsoleW
WideCharToMultiByte
UnhandledExceptionFilter
InterlockedDecrement
MultiByteToWideChar
HeapSize
FreeEnvironmentStringsW
CreateDirectoryW
DeleteFileW
GetProcAddress
GetPrivateProfileIntW
GetPrivateProfileStringW
GetFileType
lstrcpynW
RaiseException
GetCPInfo
LoadLibraryW
TlsFree
SetFilePointer
ReadFile
SetUnhandledExceptionFilter
WriteFile
GetStartupInfoW
CloseHandle
SetStdHandle
GetCommandLineA
lstrcmpW
HeapReAlloc
GetStringTypeW
GetModuleHandleW
HeapDestroy
TerminateProcess
GetModuleFileNameA
IsValidCodePage
HeapCreate
CreateFileW
CreateProcessW
TlsGetValue
Sleep
MoveFileW
GetTickCount
TlsSetValue
HeapAlloc
GetCurrentThreadId
InterlockedIncrement
ExitProcess
SetLastError
LeaveCriticalSection
SHFileOperationW
Ord(680)
GetParent
EndDialog
DefWindowProcW
ShowWindow
GetDesktopWindow
SetWindowLongW
MessageBoxW
EnableWindow
DialogBoxParamW
SendDlgItemMessageW
IsWindowEnabled
GetSysColor
GetDlgItemInt
CheckDlgButton
CreateDialogParamW
SendMessageW
SetWindowTextW
GetDlgItem
IsWindow
IsDlgButtonChecked
SetDlgItemTextW
SetDlgItemInt
GetFocus
GetWindowLongW
DestroyWindow
PE exports
Number of PE resources by type
RT_ICON 7
RT_DIALOG 5
RT_GROUP_ICON 4
RT_VERSION 1
RT_MANIFEST 1
Number of PE resources by language
RUSSIAN 16
NEUTRAL 1
ENGLISH US 1
ExifTool file metadata
SubsystemVersion
5.1

InitializedDataSize
50688

ImageVersion
0.0

ProductName
PackUpdater (Unicode)

FileVersionNumber
0.0.1.0

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x0017

CharacterSet
Unicode

LinkerVersion
10.0

FileOS
Win32

MIMEType
application/octet-stream

Subsystem
Windows GUI

TimeStamp
2011:12:03 14:53:40+00:00

FileType
Win32 DLL

PEType
PE32

InternalName
PackUpdater (Unicode)

FileDescription
Simple updater for Miranda IM premodified packs.

OSVersion
5.1

OriginalFilename
PackUpdater.dll

LegalCopyright
2011 Mataes, 2007 ZERO_BiT

MachineType
Intel 386 or later, and compatibles

CodeSize
60416

FileSubtype
0

ProductVersionNumber
0.0.1.0

EntryPoint
0x27ce

ObjectFileType
Unknown

Compressed bundles
File identification
MD5 bd6cc3d3a74511d865beccd25939a63b
SHA1 440df601797b84681122c2ecb5bee5c984acae6f
SHA256 5c001c9c42e111127e0f1d85f39b78b2355c64c8c4e12c66d07c748a445d0dcf
ssdeep
3072:Nn3qWQkF62+KLvfmVipjSrD/aXwxAJCW5eWnZuia:d38kQ2++HmVipA3q

File size 109.5 KB ( 112128 bytes )
File type Win32 DLL
Magic literal
MS-DOS executable PE for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (52.8%)
Miranda IM plugin (29.5%)
Win32 Executable Generic (11.9%)
Generic Win/DOS Executable (2.8%)
DOS Executable Generic (2.8%)
Tags
pedll

VirusTotal metadata
First submission 2012-03-13 23:47:01 UTC ( 7 years ago )
Last submission 2012-12-10 02:25:01 UTC ( 6 years, 3 months ago )
File names PackUpdater.dll
smona_5c001c9c42e111127e0f1d85f39b78b2355c64c8c4e12c66d07c748a445d0dcf.bin
PackUpdater (Unicode)
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!