× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 7d822d00cd31f4e3bc7bad3535a6590e2f838cc575b8128e716db59b37eb6fb5
File name: remotedesktop.dll
Detection ratio: 3 / 61
Analysis date: 2017-06-19 16:51:20 UTC ( 5 months ago ) View latest
Antivirus Result Update
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9939 20170619
CrowdStrike Falcon (ML) malicious_confidence_94% (D) 20170420
Sophos ML heuristic 20170607
Ad-Aware 20170619
AegisLab 20170618
AhnLab-V3 20170619
Alibaba 20170619
ALYac 20170619
Antiy-AVL 20170619
Arcabit 20170619
Avast 20170619
AVG 20170619
Avira (no cloud) 20170619
AVware 20170619
BitDefender 20170619
Bkav 20170619
CAT-QuickHeal 20170619
ClamAV 20170619
CMC 20170619
Comodo 20170619
Cyren 20170619
DrWeb 20170619
Emsisoft 20170619
Endgame 20170615
ESET-NOD32 20170619
F-Prot 20170619
F-Secure 20170619
Fortinet 20170619
GData 20170619
Ikarus 20170619
Jiangmin 20170619
K7AntiVirus 20170619
K7GW 20170619
Kaspersky 20170619
Kingsoft 20170619
Malwarebytes 20170619
McAfee 20170619
McAfee-GW-Edition 20170619
Microsoft 20170619
eScan 20170619
NANO-Antivirus 20170619
nProtect 20170619
Palo Alto Networks (Known Signatures) 20170619
Panda 20170619
Qihoo-360 20170619
Rising 20170619
SentinelOne (Static ML) 20170516
Sophos AV 20170619
SUPERAntiSpyware 20170619
Symantec 20170619
Symantec Mobile Insight 20170614
Tencent 20170619
TheHacker 20170618
TrendMicro 20170619
TrendMicro-HouseCall 20170619
Trustlook 20170619
VBA32 20170619
VIPRE 20170619
ViRobot 20170619
Webroot 20170619
WhiteArmor 20170616
Yandex 20170616
Zillya 20170619
ZoneAlarm by Check Point 20170619
Zoner 20170619
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows command line subsystem.
FileVersionInfo properties
Copyright
Copyright © 2016

Product remotedesktop
Original name remotedesktop.dll
Internal name remotedesktop.dll
File version 1.0.0.0
Description remotedesktop
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-05-10 12:26:08
Entry Point 0x00009F32
Number of sections 3
.NET details
Module Version ID 540bd774-83e9-4bca-a80f-e91ae3c748e8
TypeLib ID b0776595-b246-4bd1-9427-a24a72775f8f
PE sections
PE imports
_CorDllMain
Number of PE resources by type
RT_ICON 7
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 9
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
11.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.0.0.0

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
45056

EntryPoint
0x9f32

OriginalFileName
remotedesktop.dll

MIMEType
application/octet-stream

LegalCopyright
Copyright 2016

FileVersion
1.0.0.0

TimeStamp
2016:05:10 13:26:08+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
remotedesktop.dll

ProductVersion
1.0.0.0

FileDescription
remotedesktop

OSVersion
4.0

FileOS
Win32

Subsystem
Windows command line

MachineType
Intel 386 or later, and compatibles

CodeSize
32768

ProductName
remotedesktop

ProductVersionNumber
1.0.0.0

FileTypeExtension
dll

ObjectFileType
Dynamic link library

AssemblyVersion
1.0.0.0

File identification
MD5 e907ebeda7d6fd7f0017a6fb048c4d23
SHA1 8b2c012b2355e0c3c56d328ed532d0aa4225713b
SHA256 7d822d00cd31f4e3bc7bad3535a6590e2f838cc575b8128e716db59b37eb6fb5
ssdeep
768:3bAWrr/UZVl9AxgOJ5zBDgfmfqr+E/+6DRvU47eHarSy/70iMaOc2K1I5QFgKno8:LbAl9AmOntDgfmfqr+E/+6DRvU47eHaH

authentihash 9ff4862cc6e0bec31a530401c20d65ca4d4ee7168e9e44406605be416bc14255
imphash dae02f32a21e03ce65412f6e56942daa
File size 45.0 KB ( 46080 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (console) Intel 80386 32-bit Mono/.Net assembly

TrID Generic .NET DLL/Assembly (81.0%)
Win64 Executable (generic) (9.3%)
Windows screen saver (4.4%)
Win32 Dynamic Link Library (generic) (2.2%)
Win32 Executable (generic) (1.5%)
Tags
assembly pedll

VirusTotal metadata
First submission 2017-06-19 16:51:20 UTC ( 5 months ago )
Last submission 2017-07-18 07:50:05 UTC ( 4 months, 1 week ago )
File names 7d822d00cd31f4e3bc7bad3535a6590e2f838cc575b8128e716db59b37eb6fb5.bin
remotedesktop.dll
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!