× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 772cb84b04b86a050b84c0eb2a8ce957966ca8985f16248fdafd5815409bb48c
File name: libgobject-2.0-0
Detection ratio: 0 / 70
Analysis date: 2019-02-21 18:05:08 UTC ( 3 months ago )
Antivirus Result Update
Acronis 20190221
Ad-Aware 20190221
AegisLab 20190221
AhnLab-V3 20190221
Alibaba 20180921
ALYac 20190221
Antiy-AVL 20190221
Arcabit 20190221
Avast 20190221
Avast-Mobile 20190221
AVG 20190221
Avira (no cloud) 20190221
Babable 20180918
Baidu 20190215
BitDefender 20190221
Bkav 20190221
CAT-QuickHeal 20190221
ClamAV 20190221
CMC 20190221
Comodo 20190221
CrowdStrike Falcon (ML) 20181023
Cybereason 20190109
Cylance 20190221
Cyren 20190221
DrWeb 20190221
eGambit 20190221
Emsisoft 20190221
Endgame 20190215
ESET-NOD32 20190221
F-Prot 20190221
F-Secure 20190221
Fortinet 20190220
GData 20190221
Ikarus 20190221
Sophos ML 20181128
Jiangmin 20190221
K7AntiVirus 20190221
K7GW 20190221
Kaspersky 20190221
Kingsoft 20190221
Malwarebytes 20190221
MAX 20190221
McAfee 20190221
McAfee-GW-Edition 20190221
Microsoft 20190221
eScan 20190221
NANO-Antivirus 20190221
Palo Alto Networks (Known Signatures) 20190221
Panda 20190221
Qihoo-360 20190221
Rising 20190221
SentinelOne (Static ML) 20190203
Sophos AV 20190221
SUPERAntiSpyware 20190220
Symantec 20190221
Symantec Mobile Insight 20190220
TACHYON 20190221
Tencent 20190221
TheHacker 20190217
TotalDefense 20190221
Trapmine 20190123
TrendMicro 20190221
TrendMicro-HouseCall 20190221
Trustlook 20190221
VBA32 20190221
VIPRE 20190221
ViRobot 20190221
Webroot 20190221
Yandex 20190221
Zillya 20190221
ZoneAlarm by Check Point 20190221
Zoner 20190220
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows command line subsystem.
FileVersionInfo properties
Copyright
Copyright © 1998-2011 Tim Janik, Red Hat, Inc. and others

Product GLib
Original name libgobject-2.0-0.dll
Internal name libgobject-2.0-0
File version 2.44.1.0
Description GObject
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 1970-01-02 12:25:16
Entry Point 0x00001400
Number of sections 11
PE sections
Overlays
MD5 c174d7f4071c0d8bb749141cb09d3959
File type data
Offset 325120
Size 9962
Entropy 4.34
PE imports
GetLastError
EnterCriticalSection
FreeLibrary
QueryPerformanceCounter
GetTickCount
VirtualProtect
LoadLibraryA
DeleteCriticalSection
GetCurrentProcess
GetCurrentProcessId
UnhandledExceptionFilter
GetProcAddress
GetModuleHandleA
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
TerminateProcess
InitializeCriticalSection
VirtualQuery
TlsGetValue
Sleep
GetCurrentThreadId
LeaveCriticalSection
ffi_type_void
ffi_type_sint64
ffi_type_uint64
ffi_type_sint32
ffi_prep_cif
ffi_type_double
ffi_call
ffi_type_float
ffi_type_uint32
ffi_type_pointer
__deregister_frame_info
__register_frame_info
g_io_channel_ref
g_str_hash
g_source_destroy
g_hook_list_clear
g_array_ref
g_byte_array_unref
g_thread_unref
g_hash_table_new
g_quark_try_string
g_ptr_array_unref
g_intern_string
g_variant_take_ref
g_rec_mutex_unlock
g_date_get_julian
g_slist_remove
g_hook_next_valid
g_option_group_unref
g_hook_alloc
g_memdup
g_checksum_copy
g_qsort_with_data
g_regex_unref
g_slist_free_1
g_date_new_julian
g_free
g_datalist_set_flags
g_main_context_ref
g_datalist_get_flags
g_variant_dict_unref
g_quark_to_string
g_hash_table_unref
g_time_zone_unref
g_date_free
g_variant_type_free
g_match_info_unref
g_byte_array_ref
g_slice_alloc0
g_strdupv
g_malloc
g_slist_prepend
g_string_append
g_variant_dict_ref
g_hash_table_remove
g_main_loop_unref
g_variant_is_of_type
g_thread_ref
g_markup_parse_context_ref
g_hash_table_contains
g_ptr_array_ref
g_option_group_ref
g_realloc
g_strescape
g_date_time_unref
g_malloc_n
g_quark_from_static_string
g_checksum_free
g_strconcat
g_mutex_unlock
g_io_watch_funcs
g_key_file_ref
g_datalist_id_remove_no_notify
g_datalist_unset_flags
g_variant_unref
g_str_equal
g_return_if_fail_warning
g_hook_insert_before
g_array_unref
g_rec_mutex_lock
g_hash_table_add
g_string_new
g_assertion_message_expr
g_datalist_id_set_data_full
g_child_watch_funcs
g_match_info_ref
g_slist_append
g_date_time_ref
g_rw_lock_reader_unlock
g_main_loop_ref
g_unichar_validate
g_markup_parse_context_unref
g_error_copy
g_malloc0
glib_gettext
g_parse_debug_string
g_mutex_lock
g_key_file_unref
g_rw_lock_writer_lock
g_array_append_vals
g_rw_lock_reader_lock
g_hash_table_lookup
g_slice_free1
g_bytes_unref
g_slist_free
g_log
g_list_free
g_string_free
g_array_new
g_source_ref
g_error_free
g_string_append_printf
g_hook_destroy_link
g_array_free
g_variant_type_copy
g_strdelimit
g_timeout_funcs
g_mapped_file_unref
g_intern_static_string
g_source_unref
g_main_context_unref
g_datalist_id_dup_data
g_regex_ref
g_hash_table_foreach
g_slist_copy
g_datalist_get_data
g_hash_table_ref
g_nullify_pointer
g_string_new_len
g_datalist_clear
g_source_set_callback_indirect
g_strfreev
g_getenv_utf8
g_slist_sort
g_strdup_printf
g_bytes_ref
g_slice_alloc
g_datalist_id_replace_data
g_datalist_id_get_data
g_hook_list_init
g_variant_builder_ref
g_time_zone_ref
g_hook_first_valid
g_strcmp0
g_io_channel_unref
g_realloc_n
g_once_init_leave
g_quark_from_string
g_malloc0_n
g_slist_delete_link
g_slist_length
g_once_init_enter
g_strdup
g_variant_builder_unref
g_list_prepend
g_variant_ref_sink
g_mapped_file_ref
g_slist_find
g_hash_table_insert
g_idle_funcs
g_rw_lock_writer_unlock
g_direct_hash
g_hook_destroy
strncmp
malloc
memset
strcat
__dllonexit
abort
strlen
strncpy
_amsg_exit
fwrite
_lock
qsort
_onexit
exit
memcmp
strchr
_unlock
free
vfprintf
calloc
memcpy
memmove
_initterm
strcmp
_iob
PE exports
Number of PE resources by type
RT_VERSION 1
Number of PE resources by language
ENGLISH US 1
PE resources
ExifTool file metadata
UninitializedDataSize
2560

LinkerVersion
2.25

ImageVersion
1.0

FileSubtype
0

FileVersionNumber
2.44.1.0

LanguageCode
English (U.S.)

FileFlagsMask
0x0000

FileDescription
GObject

ImageFileCharacteristics
Executable, No line numbers, 32-bit, No debug, DLL

CharacterSet
Unicode

InitializedDataSize
324096

EntryPoint
0x1400

OriginalFileName
libgobject-2.0-0.dll

MIMEType
application/octet-stream

LegalCopyright
Copyright 1998-2011 Tim Janik, Red Hat, Inc. and others

FileVersion
2.44.1.0

TimeStamp
1970:01:02 13:25:16+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
libgobject-2.0-0

ProductVersion
2.44.1

SubsystemVersion
4.0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows command line

MachineType
Intel 386 or later, and compatibles

CompanyName
The GLib developer community

CodeSize
198144

ProductName
GLib

ProductVersionNumber
2.44.1.0

FileTypeExtension
dll

ObjectFileType
Dynamic link library

Compressed bundles
File identification
MD5 30cecf40c6f36551e78c3ce165fe7e9c
SHA1 b7b339c08a883623eb0bbb8229a8bda7bb8482ce
SHA256 772cb84b04b86a050b84c0eb2a8ce957966ca8985f16248fdafd5815409bb48c
ssdeep
6144:U4XDQFnzaNqNxCQrVRn6iqcuBSeGqppGlKHsQ:U4TQpaNqHCQrVV97KN

authentihash b8481c4400fa6e34f691f24400fadf4af6b89fcd72045bca530332b014bb8a24
imphash 8025dc793b0427468e591e8f7dbd1597
File size 327.2 KB ( 335082 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (console) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (33.7%)
Win64 Executable (generic) (29.8%)
Microsoft Visual C++ compiled executable (generic) (17.8%)
Win32 Dynamic Link Library (generic) (7.1%)
Win32 Executable (generic) (4.8%)
Tags
pedll overlay

VirusTotal metadata
First submission 2015-08-29 16:28:48 UTC ( 3 years, 9 months ago )
Last submission 2018-05-24 01:41:34 UTC ( 1 year ago )
File names libgobject-2.0-0.dll
libgobject-2.0-0.dll
libgobject-2.0-0.dll
libgobject-2.0-0.dll
libgobject-2.0-0.dll
libgobject-2.0-0.dll
libgobject-2.0-0.dll
libgobject-2.0-0.dll
libgobject-2.0-0
libgobject-2.0-0.dll
libgobject-2.0-0.dll
772CB84B04B86A050B84C0EB2A8CE957966CA8985F16248FDAFD5815409BB48C
772CB84B04B86A050B84C0EB2A8CE957966CA8985F16248FDAFD5815409BB48C
libgobject-2.0-0.dll
libgobject-2.0-0.dll
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!