× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 68d8f17d31df0762014f2880c27c83284a5acab845cd1e878b1eb127dbd5355e
File name: d3d9.dll
Detection ratio: 5 / 42
Analysis date: 2012-03-29 12:44:10 UTC ( 5 years, 6 months ago )
Antivirus Result Update
BitDefender Gen:Variant.Kazy.62366 20120329
Emsisoft Hoax.Win32.BadJoke!IK 20120329
F-Secure Gen:Variant.Kazy.62377 20120329
GData Gen:Variant.Kazy.62377 20120329
Ikarus Hoax.Win32.BadJoke 20120329
AhnLab-V3 20120329
AntiVir 20120329
Antiy-AVL 20120329
Avast 20120329
AVG 20120329
ByteHero 20120328
CAT-QuickHeal 20120329
ClamAV 20120329
Commtouch 20120329
Comodo 20120329
DrWeb 20120329
eSafe 20120328
eTrust-Vet 20120328
F-Prot 20120328
Fortinet 20120329
Jiangmin 20120328
K7AntiVirus 20120328
Kaspersky 20120329
McAfee 20120329
McAfee-GW-Edition 20120329
Microsoft 20120329
NOD32 20120329
Norman 20120329
nProtect 20120329
Panda 20120329
PCTools 20120326
Rising 20120329
Sophos AV 20120329
SUPERAntiSpyware 20120328
Symantec 20120329
TheHacker 20120329
TrendMicro 20120329
TrendMicro-HouseCall 20120329
VBA32 20120329
VIPRE 20120328
ViRobot 20120329
VirusBuster 20120329
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows command line subsystem.
FileVersionInfo properties
Copyright
ultasaputra @ N3 Final Fix

Publisher ultasaputra @ N3 Final Fix
Product ultasaputra @ N3 Final Fix
Original name ultasaputra @ N3 Final Fix
Internal name ultasaputra @ N3 Final Fix
File version ultasaputra @ N3 Final Fix
Description ultasaputra @ N3 Final Fix
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2012-03-29 12:32:16
Entry Point 0x00001000
Number of sections 7
PE sections
PE imports
AddAtomA, CreateThread, DisableThreadLibraryCalls, FindAtomA, GetAtomNameA, GetModuleFileNameA, GetModuleHandleA, IsBadReadPtr, IsBadWritePtr, Sleep, VirtualProtect
GetAsyncKeyState, MessageBoxA
__dllonexit, _errno, _iob, abort, fflush, fprintf, free, malloc, memcpy
ExifTool file metadata
LegalTrademarks
ultasaputra @ N3 Final Fix

UninitializedDataSize
512

LinkerVersion
2.56

ImageVersion
1.0

FileSubtype
0

FileVersionNumber
6.0.7.8

LanguageCode
Indonesian

FileFlagsMask
0x0000

CharacterSet
Windows, Latin1

InitializedDataSize
8704

FileOS
Unknown (0)

MIMEType
application/octet-stream

LegalCopyright
ultasaputra @ N3 Final Fix

FileVersion
ultasaputra @ N3 Final Fix

TimeStamp
2012:03:29 14:32:16+02:00

FileType
Win32 DLL

PEType
PE32

InternalName
ultasaputra @ N3 Final Fix

SubsystemVersion
4.0

ProductVersion
ultasaputra @ N3 Final Fix

FileDescription
ultasaputra @ N3 Final Fix

OSVersion
4.0

OriginalFilename
ultasaputra @ N3 Final Fix

Subsystem
Windows command line

MachineType
Intel 386 or later, and compatibles

CompanyName
ultasaputra @ N3 Final Fix

CodeSize
4096

ProductName
ultasaputra @ N3 Final Fix

ProductVersionNumber
6.0.7.8

EntryPoint
0x1000

ObjectFileType
Dynamic link library

File identification
MD5 e3aee852da509e4ecfc0be5d90da0431
SHA1 55882ee15b3dcf946f5260ef60c2eb69ca494ae8
SHA256 68d8f17d31df0762014f2880c27c83284a5acab845cd1e878b1eb127dbd5355e
ssdeep
384:j/czqRGFgC4ElnBpb6pruapjzrdpA8tKM7:SblB56prukhl7

File size 19.7 KB ( 20126 bytes )
File type Win32 DLL
Magic literal
MS-DOS executable PE for MS Windows (DLL) (console) Intel 80386 32-bit

TrID Win64 Executable Generic (88.0%)
Win32 Dynamic Link Library (generic) (7.7%)
Generic Win/DOS Executable (2.0%)
DOS Executable Generic (2.0%)
VXD Driver (0.0%)
VirusTotal metadata
First submission 2012-03-29 12:44:10 UTC ( 5 years, 6 months ago )
Last submission 2012-03-29 12:44:10 UTC ( 5 years, 6 months ago )
File names d3d9.dll
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!