× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 7011e5bd4226f0baf1cdcf4ced6db82795d6681ecbe67ae373248dfe18987dd5
File name: msdbg.dll
Detection ratio: 0 / 56
Analysis date: 2015-12-05 22:38:27 UTC ( 2 years, 11 months ago )
Antivirus Result Update
Ad-Aware 20151205
AegisLab 20151205
Yandex 20151205
AhnLab-V3 20151205
Alibaba 20151204
ALYac 20151204
Antiy-AVL 20151205
Arcabit 20151205
Avast 20151205
AVG 20151205
Avira (no cloud) 20151205
AVware 20151205
Baidu-International 20151205
BitDefender 20151205
Bkav 20151205
ByteHero 20151205
CAT-QuickHeal 20151205
ClamAV 20151204
CMC 20151201
Comodo 20151202
Cyren 20151205
DrWeb 20151205
Emsisoft 20151205
ESET-NOD32 20151205
F-Prot 20151205
F-Secure 20151205
Fortinet 20151204
GData 20151205
Ikarus 20151205
Jiangmin 20151205
K7AntiVirus 20151202
K7GW 20151202
Kaspersky 20151205
Malwarebytes 20151205
McAfee 20151205
McAfee-GW-Edition 20151205
Microsoft 20151205
eScan 20151205
NANO-Antivirus 20151205
nProtect 20151204
Panda 20151205
Qihoo-360 20151205
Rising 20151205
Sophos AV 20151205
SUPERAntiSpyware 20151205
Symantec 20151205
Tencent 20151205
TheHacker 20151205
TotalDefense 20151205
TrendMicro 20151205
TrendMicro-HouseCall 20151205
VBA32 20151204
VIPRE 20151205
ViRobot 20151205
Zillya 20151205
Zoner 20151205
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
© Microsoft Corporation. All rights reserved.

Product Microsoft® Visual Studio .NET
Original name msdbg.dll
Internal name msdbg.dll
File version 7.00.9466
Description Active Debugging Proxy/Stub
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2002-01-05 16:03:44
Entry Point 0x0001B7D6
Number of sections 5
PE sections
PE imports
GetLastError
HeapFree
GetStdHandle
LCMapStringW
SetHandleCount
GetSystemInfo
GetOEMCP
LCMapStringA
HeapDestroy
GetTickCount
DisableThreadLibraryCalls
VirtualProtect
GetVersionExA
LoadLibraryA
RtlUnwind
GetModuleFileNameA
FreeEnvironmentStringsA
GetStartupInfoA
GetEnvironmentStrings
GetLocaleInfoA
GetCurrentProcessId
WideCharToMultiByte
ExitProcess
MultiByteToWideChar
HeapSize
FreeEnvironmentStringsW
GetCommandLineA
GetProcAddress
GetCPInfo
GetStringTypeA
GetModuleHandleA
GetCurrentProcess
GetSystemTimeAsFileTime
GetACP
HeapReAlloc
GetStringTypeW
TerminateProcess
QueryPerformanceCounter
HeapCreate
VirtualQuery
VirtualFree
GetEnvironmentStringsW
GetFileType
HeapAlloc
GetCurrentThreadId
VirtualAlloc
VARIANT_UserFree
VARIANT_UserMarshal
BSTR_UserUnmarshal
VARIANT_UserUnmarshal
BSTR_UserSize
VARIANT_UserSize
BSTR_UserFree
BSTR_UserMarshal
IUnknown_Release_Proxy
CStdStubBuffer_CountRefs
IUnknown_QueryInterface_Proxy
NdrStubCall2
CStdStubBuffer_Disconnect
NdrDllCanUnloadNow
NdrDllRegisterProxy
IUnknown_AddRef_Proxy
CStdStubBuffer_DebugServerRelease
CStdStubBuffer_Connect
NdrStubForwardingFunction
NdrDllGetClassObject
NdrOleFree
NdrCStdStubBuffer_Release
NdrOleAllocate
NdrClientCall2
CStdStubBuffer_Invoke
CStdStubBuffer_DebugServerQueryInterface
CStdStubBuffer_IsIIDSupported
CStdStubBuffer_QueryInterface
CStdStubBuffer_AddRef
NdrDllUnregisterProxy
NdrCStdStubBuffer2_Release
HWND_UserSize
HWND_UserUnmarshal
HWND_UserMarshal
HWND_UserFree
PE exports
Number of PE resources by type
RT_VERSION 1
Number of PE resources by language
ENGLISH US 1
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
7.0

ImageVersion
7.0

FileSubtype
0

FileVersionNumber
7.0.9466.0

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
36864

EntryPoint
0x1b7d6

OriginalFileName
msdbg.dll

MIMEType
application/octet-stream

LegalCopyright
Microsoft Corporation. All rights reserved.

FileVersion
7.00.9466

TimeStamp
2002:01:05 17:03:44+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
msdbg.dll

ProductVersion
7.00.9466

FileDescription
Active Debugging Proxy/Stub

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Microsoft Corporation

CodeSize
135168

ProductName
Microsoft Visual Studio .NET

ProductVersionNumber
7.0.9466.0

FileTypeExtension
dll

ObjectFileType
Dynamic link library

File identification
MD5 1de49a9b9e714049c56ad06400bc80b3
SHA1 28b7100d97f38b9c88c26aab4fa588eb53c33118
SHA256 7011e5bd4226f0baf1cdcf4ced6db82795d6681ecbe67ae373248dfe18987dd5
ssdeep
3072:RvQ2HX2VZSuTcYukjmZpWwoAXYvoYvoIQIkmF+B4t+KeqEfxc0TCQgnXRl:vWNG+h

authentihash e500c1949c5b6bf733c784b2eb533ac81070d2aa5fb62813b1fd1ddabbfc9383
imphash a040f02e76c73d2508e1095c09ff5ea7
File size 172.0 KB ( 176128 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (67.3%)
Win32 Dynamic Link Library (generic) (14.2%)
Win32 Executable (generic) (9.7%)
Generic Win/DOS Executable (4.3%)
DOS Executable Generic (4.3%)
Tags
pedll

VirusTotal metadata
First submission 2015-11-21 21:29:46 UTC ( 2 years, 11 months ago )
Last submission 2015-11-21 21:29:46 UTC ( 2 years, 11 months ago )
File names msdbg2.dll
msdbg.dll
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!