× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 9f0addf22e346b4e64ba24699feb5a23d8579979ff7cb4b84de42a4391defea9
File name: STBRCCServices.dll
Detection ratio: 0 / 57
Analysis date: 2017-02-07 16:47:54 UTC ( 2 years, 1 month ago )
Antivirus Result Update
Ad-Aware 20170207
AegisLab 20170207
AhnLab-V3 20170207
Alibaba 20170122
ALYac 20170207
Antiy-AVL 20170207
Arcabit 20170207
Avast 20170207
AVG 20170207
Avira (no cloud) 20170207
AVware 20170207
Baidu 20170207
BitDefender 20170207
Bkav 20170207
CAT-QuickHeal 20170207
ClamAV 20170207
CMC 20170207
Comodo 20170207
CrowdStrike Falcon (ML) 20170130
Cyren 20170207
DrWeb 20170207
Emsisoft 20170207
ESET-NOD32 20170207
F-Prot 20170207
F-Secure 20170207
Fortinet 20170207
GData 20170207
Ikarus 20170207
Sophos ML 20170203
Jiangmin 20170207
K7AntiVirus 20170207
K7GW 20170207
Kaspersky 20170207
Kingsoft 20170207
Malwarebytes 20170207
McAfee 20170207
McAfee-GW-Edition 20170207
Microsoft 20170207
eScan 20170207
NANO-Antivirus 20170207
nProtect 20170207
Panda 20170207
Qihoo-360 20170207
Rising 20170207
Sophos AV 20170207
SUPERAntiSpyware 20170207
Symantec 20170207
Tencent 20170207
TheHacker 20170205
TotalDefense 20170207
TrendMicro 20170207
TrendMicro-HouseCall 20170207
Trustlook 20170207
VBA32 20170207
VIPRE 20170207
ViRobot 20170207
WhiteArmor 20170202
Yandex 20170206
Zillya 20170207
Zoner 20170207
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
Authenticode signature block and FileVersionInfo properties
Copyright
Copyright (C) 2008-2009 SoftThinks

Product STBRCC Services
Original name STBRCCServices.dll
Internal name STBRCC Services
File version 1, 0, 0, 3
Description STBRCC Services
Signature verification Signed file, verified signature
Signing date 5:59 PM 5/21/2010
Signers
[+] Dell Inc
Status This certificate or one of the certificates in the certificate chain is not time valid.
Issuer VeriSign Class 3 Code Signing 2009-2 CA
Valid from 1:00 AM 12/16/2009
Valid to 12:59 AM 12/16/2012
Valid usage Code Signing
Algorithm sha1RSA
Thumbprint EFDC144AD053D00BBD86DE3FA7487DDC5B0CE6D9
Serial number 7A 2A 56 F9 33 21 38 54 32 AF A3 2D 2C 6C 5B B8
[+] VeriSign Class 3 Code Signing 2009-2 CA
Status Valid
Issuer Class 3 Public Primary Certification Authority
Valid from 1:00 AM 5/21/2009
Valid to 12:59 AM 5/21/2019
Valid usage Client Auth, Code Signing
Algorithm sha1RSA
Thumbprint 12D4872BC3EF019E7E0B6F132480AE29DB5B1CA3
Serial number 65 52 26 E1 B2 2E 18 E1 59 0F 29 85 AC 22 E7 5C
[+] VeriSign Class 3 Public Primary CA
Status Valid
Issuer Class 3 Public Primary Certification Authority
Valid from 1:00 AM 1/29/1996
Valid to 12:59 AM 8/2/2028
Valid usage Email Protection, Client Auth, Code Signing, Server Auth
Algorithm md2RSA
Thumbprint 742C3192E607E424EB4549542BE1BBC53E6174E2
Serial number 70 BA E4 1D 10 D9 29 34 B6 38 CA 7B 03 CC BA BF
Counter signers
[+] VeriSign Time Stamping Services Signer - G2
Status This certificate or one of the certificates in the certificate chain is not time valid., The revocation status of the certificate or one of the certificates in the certificate chain is unknown., Error 65536 (0x10000), The revocation status of the certificate or one of the certificates in the certificate chain is either offline or stale.
Issuer VeriSign Time Stamping Services CA
Valid from 1:00 AM 6/15/2007
Valid to 12:59 AM 6/15/2012
Valid usage Timestamp Signing
Algorithm sha1RSA
Thumbrint ADA8AAA643FF7DC38DD40FA4C97AD559FF4846DE
Serial number 38 25 D7 FA F8 61 AF 9E F4 90 E7 26 B5 D6 5A D5
[+] VeriSign Time Stamping Services CA
Status This certificate or one of the certificates in the certificate chain is not time valid.
Issuer Thawte Timestamping CA
Valid from 1:00 AM 12/4/2003
Valid to 12:59 AM 12/4/2013
Valid usage Timestamp Signing
Algorithm sha1RSA
Thumbrint F46AC0C6EFBB8C6A14F55F09E2D37DF4C0DE012D
Serial number 47 BF 19 95 DF 8D 52 46 43 F7 DB 6D 48 0D 31 A4
[+] Thawte Timestamping CA
Status Valid
Issuer Thawte Timestamping CA
Valid from 1:00 AM 1/1/1997
Valid to 12:59 AM 1/1/2021
Valid usage Timestamp Signing
Algorithm md5RSA
Thumbrint BE36A4562FB2EE05DBB3D32323ADF445084ED656
Serial number 00
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2009-04-21 15:34:08
Entry Point 0x0000202C
Number of sections 5
PE sections
Overlays
MD5 85597ef1aeaa6c70df66cd59bcf522cd
File type data
Offset 106496
Size 5440
Entropy 7.20
PE imports
?SetError@CSTError@@QAEHK@Z
?GetErrorString@CSTError@@QAE?AVCSTString@@XZ
??0CSTError@@QAE@XZ
??1CSTError@@UAE@XZ
GetLastError
IsValidCodePage
HeapFree
GetStdHandle
EnterCriticalSection
LCMapStringW
SetHandleCount
GetOEMCP
LCMapStringA
IsDebuggerPresent
GetTickCount
TlsAlloc
GetEnvironmentStringsW
GetVersionExA
LoadLibraryA
RtlUnwind
GetModuleFileNameA
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetEnvironmentStrings
GetLocaleInfoA
GetCurrentProcessId
WideCharToMultiByte
UnhandledExceptionFilter
InterlockedDecrement
MultiByteToWideChar
HeapSize
FreeEnvironmentStringsW
GetCommandLineA
GetProcAddress
TlsFree
GetProcessHeap
ExitProcess
RaiseException
GetCPInfo
GetStringTypeA
GetModuleHandleA
SetUnhandledExceptionFilter
WriteFile
GetStartupInfoA
GetSystemTimeAsFileTime
GetACP
HeapReAlloc
GetStringTypeW
HeapDestroy
TerminateProcess
QueryPerformanceCounter
InitializeCriticalSection
HeapCreate
VirtualFree
TlsGetValue
Sleep
GetFileType
TlsSetValue
HeapAlloc
GetCurrentThreadId
InterlockedIncrement
VirtualAlloc
SetLastError
LeaveCriticalSection
?LoadFile@CSTLggFile@@QAEHPBG@Z
?SetLanguage@CSTLggFile@@QAEHPBG@Z
?Load@CSTIni@@QAEHPBGPAH@Z
??0CSTLggFile@@QAE@XZ
??0CSTIni@@QAE@XZ
??1CSTIni@@UAE@XZ
?GetKeyValue@CSTIni@@QAEHPBG0AAVCSTString@@@Z
?IsLanguagePresent@CSTLggFile@@QAEHPBG@Z
?GetUserLanguage@CSTLggFile@@QAEKVCSTString@@@Z
?SetLanguage@CSTLggFile@@QAEHK@Z
??1CSTLggFile@@UAE@XZ
?GetString@CSTLggFile@@QAE?AVCSTString@@PBGPAG@Z
?IsSectionPresent@CSTIni@@QAEHPBG@Z
?AddInfo@CSTLog@@QAAHPBGZZ
?AddError@CSTLog@@QAAHPBGZZ
?EnterFunction@CSTLog@@QAAHPBGZZ
?ExitFunction@CSTLog@@QAEHH@Z
?GetInstance@CSTLog@@SAPAV1@XZ
?ExitFunction@CSTLog@@QAEKK@Z
?Init@CSTLog@@QAEHH@Z
??1CSTNLS@@UAE@XZ
?GetLCIDMostCommonLanguage@CSTNLS@@QAEHKAAVCSTString@@@Z
??0CSTNLS@@QAE@XZ
??1CSTRegistry@@UAE@XZ
??0CSTRegistry@@QAE@XZ
?GetSZKeyValue@CSTRegistry@@QAEHPAUHKEY__@@PBG1AAVCSTString@@@Z
??0CSTString@@QAE@XZ
??BCSTString@@QBEPBGXZ
??0CSTString@@QAE@PBG@Z
??1CSTString@@QAE@XZ
?GetSTXmlInterface@@YAPAViCSTXml@@XZ
PE exports
Number of PE resources by type
RT_MANIFEST 1
NLS 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 2
FRENCH 1
PE resources
Debug information
ExifTool file metadata
UninitializedDataSize
0

InitializedDataSize
65536

ImageVersion
0.0

ProductName
STBRCC Services

FileVersionNumber
1.0.0.3

LanguageCode
Unknown (0009)

FileFlagsMask
0x0017

FileDescription
STBRCC Services

CharacterSet
Unicode

LinkerVersion
8.0

FileTypeExtension
dll

OriginalFileName
STBRCCServices.dll

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
1, 0, 0, 3

TimeStamp
2009:04:21 16:34:08+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
STBRCC Services

ProductVersion
1, 0, 0, 3

SubsystemVersion
4.0

OSVersion
4.0

FileOS
Win32

LegalCopyright
Copyright (C) 2008-2009 SoftThinks

MachineType
Intel 386 or later, and compatibles

CompanyName
SoftThinks

CodeSize
36864

FileSubtype
0

ProductVersionNumber
1.0.0.3

EntryPoint
0x202c

ObjectFileType
Dynamic link library

File identification
MD5 2038a8dd2c4b6d7ebf9845e4bccb0cb7
SHA1 a12adea71d41740ca9c2c2c36207da11e5f07730
SHA256 9f0addf22e346b4e64ba24699feb5a23d8579979ff7cb4b84de42a4391defea9
ssdeep
1536:n1crj13w08W+o7/d89EQtlG1pyTOazG6cAFMMcnwYCd6m:10j13wcu9EQLG1pyKazGkMMcnur

authentihash a314a632f498917ddb0b7a60ed4eb1a6492feeebaafc9f6d3bc10a3fbbfff550
imphash 1b83b22d7892fe087404c65fe9b3e577
File size 109.3 KB ( 111936 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (42.2%)
Win64 Executable (generic) (37.3%)
Win32 Dynamic Link Library (generic) (8.8%)
Win32 Executable (generic) (6.0%)
Generic Win/DOS Executable (2.7%)
Tags
pedll signed overlay

VirusTotal metadata
First submission 2010-07-25 20:56:24 UTC ( 8 years, 7 months ago )
Last submission 2017-02-07 16:47:54 UTC ( 2 years, 1 month ago )
File names 28558C57402174CFB5BA01B0403C1D00D3B307AA.dll
STBRCCServices.dll
STBRCCServices.dll
STBRCC Services
STBRCCServices.dll
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!