× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 996c295c18caa770cff8c3c6d38a6284866d75478f9feead1a0afb9372733128
File name: eToken.dll1.87BD81FA_C5DD_4519_BDC0_8C7352DE3E2E
Detection ratio: 0 / 41
Analysis date: 2010-06-03 09:54:28 UTC ( 8 years, 11 months ago )
Antivirus Result Update
a-squared 20100603
AhnLab-V3 20100602
AntiVir 20100602
Antiy-AVL 20100602
Authentium 20100603
Avast 20100602
Avast5 20100602
AVG 20100602
BitDefender 20100603
CAT-QuickHeal 20100603
ClamAV 20100603
Comodo 20100601
DrWeb 20100603
eSafe 20100601
eTrust-Vet 20100602
F-Prot 20100603
F-Secure 20100603
Fortinet 20100602
GData 20100603
Ikarus 20100603
Jiangmin 20100602
Kaspersky 20100603
McAfee 20100603
McAfee-GW-Edition 20100602
Microsoft 20100603
NOD32 20100602
Norman 20100602
nProtect 20100603
Panda 20100602
PCTools 20100603
Prevx 20100603
Rising 20100603
Sophos AV 20100603
Sunbelt 20100603
Symantec 20100603
TheHacker 20100603
TrendMicro 20100603
TrendMicro-HouseCall 20100603
VBA32 20100602
ViRobot 20100603
VirusBuster 20100602
The file being studied is a Portable Executable file! More specifically, it is a unknown file.
FileVersionInfo properties
Copyright
Copyright (c) 2009 Aladdin Knowledge Systems, Ltd. All rights reserved.

Publisher Aladdin Knowledge Systems, Ltd.
Product eToken PKI client
Original name eToken.dll
Internal name eToken.dll
File version 5.1.33.0
Description eToken Dynamic Link Library
PE header basic information
Number of sections 5
PE sections
PE imports
CryptVerifySignatureA
CryptVerifySignatureW
CryptGetHashParam
CryptSetHashParam
CryptHashSessionKey
CryptDuplicateHash
CryptCreateHash
OpenThreadToken
GetFileSecurityW
OpenProcessToken
GetTokenInformation
BuildTrusteeWithSidA
GetSecurityDescriptorDacl
GetEffectiveRightsFromAclA
RegOpenKeyExW
RegEnumKeyW
RegQueryValueExW
RegCloseKey
RegOpenKeyExA
RegSetValueExA
RegNotifyChangeKeyValue
RegQueryValueExA
CryptSetKeyParam
CryptGetKeyParam
CryptGetProvParam
CryptHashData
CryptDecrypt
CryptDeriveKey
CryptDuplicateKey
CryptDestroyHash
StartServiceCtrlDispatcherA
RegisterServiceCtrlHandlerExA
SetServiceStatus
CryptExportKey
CryptGetUserKey
CryptGenKey
CryptReleaseContext
CryptDestroyKey
CryptEncrypt
CryptGenRandom
CryptImportKey
CryptAcquireContextA
SetSecurityInfo
GetSecurityDescriptorSacl
LookupAccountSidW
ConvertSidToStringSidA
ConvertStringSecurityDescriptorToSecurityDescriptorA
LogonUserA
LookupAccountSidA
RegEnumKeyExA
RegDeleteValueA
RegSetValueExW
RegCreateKeyExA
CryptEnumProvidersA
ImpersonateLoggedOnUser
CreateProcessAsUserA
DuplicateTokenEx
RevertToSelf
CloseServiceHandle
EnumServicesStatusExA
OpenSCManagerA
CertSaveStore
CryptQueryObject
CertAddEncodedCertificateToStore
CertDeleteCertificateFromStore
CertCloseStore
CertAddCertificateContextToStore
CertSetCertificateContextProperty
CertOpenStore
CertEnumCertificatesInStore
CertFreeCertificateContext
CertGetNameStringW
CertCreateCertificateContext
CryptUnprotectData
CryptProtectData
MultiByteToWideChar
GetFullPathNameW
GetDriveTypeA
CreateFileA
DeviceIoControl
CloseHandle
CreateFileW
SetErrorMode
GetDriveTypeW
GetVolumeInformationW
GetWindowsDirectoryA
LocalFree
LoadLibraryA
GetProcAddress
FreeLibrary
IsBadReadPtr
IsBadWritePtr
GetCurrentThread
GetCurrentProcess
ProcessIdToSessionId
GetLastError
OpenEventA
SetEvent
ResetEvent
CreateMutexA
WaitForSingleObject
ReleaseMutex
WideCharToMultiByte
CreateEventA
GetStringTypeW
GetCurrentThreadId
OpenThread
GetExitCodeThread
ReleaseSemaphore
CreateSemaphoreA
GetModuleHandleA
WaitForMultipleObjects
CreateThread
TerminateThread
InterlockedIncrement
CreatePipe
WriteFile
ReadFile
GetStdHandle
GetEnvironmentVariableW
SetEnvironmentVariableW
GetVersion
TlsGetValue
TlsSetValue
InitializeCriticalSection
TlsAlloc
TlsFree
DeleteCriticalSection
EnterCriticalSection
GetCurrentProcessId
GetModuleFileNameA
GetVersionExA
GetSystemInfo
VirtualAlloc
VirtualLock
VirtualFree
VirtualUnlock
OpenMutexA
OpenFileMappingA
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
HeapAlloc
GetProcessHeap
HeapFree
lstrcpynA
lstrcmpiA
QueryPerformanceFrequency
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetLocalTime
SystemTimeToFileTime
FileTimeToSystemTime
SetFilePointer
GetFileSize
SetEndOfFile
DeleteFileW
LockFileEx
UnlockFile
ExitProcess
CreateDirectoryA
GetFileTime
SetLastError
IsBadStringPtrA
IsBadStringPtrW
lstrcmpW
InterlockedCompareExchange
lstrcpynW
FindFirstFileW
FindNextFileW
FindClose
QueryDosDeviceA
GetLogicalDrives
Sleep
LeaveCriticalSection
NetUserChangePassword
strchr
strstr
_memicmp
isdigit
iswctype
_wcsicmp
memchr
memmove
memset
_alldiv
_allmul
memcpy
_aullshr
_chkstk
RtlUnwind
SetupDiGetDeviceInterfaceDetailW
SetupDiDestroyDeviceInfoList
CM_Get_DevNode_Registry_PropertyW
CM_Get_Device_IDA
SetupDiCreateDeviceInfoList
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status
CM_Get_Parent
SetupDiEnumDeviceInfo
SetupDiGetDeviceInstanceIdW
SetupDiGetClassDevsW
SetupDiOpenDeviceInfoA
wvnsprintfA
PathAppendA
StrStrIW
wnsprintfW
StrRChrA
SHDeleteKeyA
StrCmpIW
StrStrIA
StrCpyNW
StrChrA
PeekMessageA
MsgWaitForMultipleObjects
CreateWindowExA
GetThreadDesktop
DefWindowProcA
RegisterClassExA
SetCursor
GetUserObjectInformationA
UnregisterDeviceNotification
RegisterDeviceNotificationA
MessageBoxA
CharLowerA
CharUpperA
LoadCursorA
VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA
SCardStatusA
SCardGetStatusChangeA
SCardListReadersA
g_rgSCardT0Pci
SCardBeginTransaction
SCardDisconnect
SCardReconnect
SCardConnectA
g_rgSCardT1Pci
SCardTransmit
SCardCancel
SCardReleaseContext
SCardEstablishContext
SCardControl
SCardEndTransaction
WTSEnumerateSessionsA
WTSFreeMemory
WTSQuerySessionInformationA
WTSQueryUserToken
WTSQuerySessionInformationW
Compressed bundles
File identification
MD5 7e6f7e24e517f6e25cca06a208249b09
SHA1 2409338314b89d0ab4e71e901a7f2535df01bba4
SHA256 996c295c18caa770cff8c3c6d38a6284866d75478f9feead1a0afb9372733128
ssdeep
12288:acXg8NkEunAhw80fKUdDtBalxi4djmi5gG+5tTR7vYnfSvPoFXF:acwqkcw8sBad6i5w5tThvYn6vPoFX

File size 676.0 KB ( 692224 bytes )
File type unknown
Magic literal

TrID Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
VirusTotal metadata
First submission 2010-06-03 09:54:28 UTC ( 8 years, 11 months ago )
Last submission 2010-06-03 09:54:28 UTC ( 8 years, 11 months ago )
File names eToken.dll1.87BD81FA_C5DD_4519_BDC0_8C7352DE3E2E
eToken.dll.87BD81FA_C5DD_4519_BDC0_8C7352DE3E2E
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!