× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 5cee9cc316144a19c00faa42031a4a012aa6418ed23249c923ce19965095c018
File name: vt-upload-zVy4S
Detection ratio: 0 / 46
Analysis date: 2013-01-30 17:33:19 UTC ( 5 years, 7 months ago )
Antivirus Result Update
Yandex 20130130
AhnLab-V3 20130130
AntiVir 20130130
Antiy-AVL 20130130
Avast 20130130
AVG 20130130
BitDefender 20130130
ByteHero 20130126
CAT-QuickHeal 20130130
ClamAV 20130130
Commtouch 20130130
Comodo 20130130
DrWeb 20130130
Emsisoft 20130130
eSafe 20130127
ESET-NOD32 20130130
F-Prot 20130130
F-Secure 20130130
Fortinet 20130130
GData 20130130
Ikarus 20130130
Jiangmin 20121221
K7AntiVirus 20130130
Kaspersky 20130130
Kingsoft 20130121
Malwarebytes 20130130
McAfee 20130130
McAfee-GW-Edition 20130130
Microsoft 20130130
eScan 20130130
NANO-Antivirus 20130130
Norman 20130130
nProtect 20130130
Panda 20130130
PCTools 20130130
Rising 20130130
Sophos AV 20130130
SUPERAntiSpyware 20130130
Symantec 20130130
TheHacker 20130129
TotalDefense 20130130
TrendMicro 20130130
TrendMicro-HouseCall 20130130
VBA32 20130130
VIPRE 20130130
ViRobot 20130130
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2013-01-29 20:54:34
Number of sections 4
PE sections
PE exports
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

TimeStamp
2013:01:29 21:54:34+01:00

FileType
Win32 DLL

PEType
PE32

CodeSize
941568

LinkerVersion
9.0

EntryPoint
0x0000

InitializedDataSize
1107456

SubsystemVersion
5.0

ImageVersion
0.0

OSVersion
5.0

UninitializedDataSize
0

File identification
MD5 cf2c061cdc56fcb26bf012bb8b2adc18
SHA1 d2d6376b3e13119201c1c7e173e506c7a17696a5
SHA256 5cee9cc316144a19c00faa42031a4a012aa6418ed23249c923ce19965095c018
ssdeep
24576:5cEj2XBsZH8pgE0UTFAmlY4p0giyPNbFX/H:fj2xsXkc9ylbFvH

File size 2.0 MB ( 2049536 bytes )
File type Win32 DLL
Magic literal
MS-DOS executable PE for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
Tags
pedll

VirusTotal metadata
First submission 2013-01-30 17:33:19 UTC ( 5 years, 7 months ago )
Last submission 2013-01-30 17:33:19 UTC ( 5 years, 7 months ago )
File names vt-upload-zVy4S
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!