× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 9f31f02a60a3e84a25318dab0b8bc8d41e1910472ab7d969784638c141aa5d38
File name: plds4.dll
Detection ratio: 0 / 67
Analysis date: 2018-08-15 21:27:58 UTC ( 1 month ago )
Antivirus Result Update
Ad-Aware 20180815
AegisLab 20180815
AhnLab-V3 20180815
Alibaba 20180713
ALYac 20180815
Antiy-AVL 20180815
Arcabit 20180815
Avast 20180815
Avast-Mobile 20180815
AVG 20180815
Avira (no cloud) 20180815
AVware 20180815
Babable 20180725
Baidu 20180815
BitDefender 20180815
Bkav 20180815
CAT-QuickHeal 20180814
ClamAV 20180815
CMC 20180812
Comodo 20180815
CrowdStrike Falcon (ML) 20180723
Cybereason 20180225
Cylance 20180815
Cyren 20180815
DrWeb 20180815
eGambit 20180815
Emsisoft 20180815
Endgame 20180730
ESET-NOD32 20180815
F-Prot 20180815
F-Secure 20180815
Fortinet 20180815
GData 20180815
Ikarus 20180815
Sophos ML 20180717
Jiangmin 20180815
K7AntiVirus 20180815
K7GW 20180815
Kaspersky 20180815
Kingsoft 20180815
Malwarebytes 20180815
MAX 20180815
McAfee 20180815
McAfee-GW-Edition 20180815
Microsoft 20180815
eScan 20180815
NANO-Antivirus 20180815
Palo Alto Networks (Known Signatures) 20180815
Panda 20180815
Qihoo-360 20180815
Rising 20180815
SentinelOne (Static ML) 20180701
Sophos AV 20180815
SUPERAntiSpyware 20180815
Symantec 20180815
Symantec Mobile Insight 20180814
TACHYON 20180815
Tencent 20180815
TheHacker 20180815
TotalDefense 20180815
TrendMicro 20180815
TrendMicro-HouseCall 20180815
Trustlook 20180815
VBA32 20180815
VIPRE 20180815
ViRobot 20180815
Webroot 20180815
Yandex 20180815
Zillya 20180815
ZoneAlarm by Check Point 20180815
Zoner 20180815
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
FileVersionInfo properties
Product Netscape Portable Runtime
Original name plds4.dll
Internal name plds4
File version 4.9
Description PLDS Library
Packers identified
F-PROT UPX
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2012-05-23 00:58:52
Entry Point 0x00008160
Number of sections 3
PE sections
PE imports
VirtualProtect
VirtualFree
LoadLibraryA
VirtualAlloc
GetProcAddress
PR_Free
PE exports
Number of PE resources by type
RT_MANIFEST 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 2
PE resources
ExifTool file metadata
UninitializedDataSize
24576

LinkerVersion
8.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
4.9.0.0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
PLDS Library

ImageFileCharacteristics
Executable, 32-bit, DLL

CharacterSet
Unicode

InitializedDataSize
4096

EntryPoint
0x8160

OriginalFileName
plds4.dll

MIMEType
application/octet-stream

FileVersion
4.9

TimeStamp
2012:05:23 01:58:52+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
plds4

ProductVersion
4.9

SubsystemVersion
4.0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Mozilla Foundation

CodeSize
8192

ProductName
Netscape Portable Runtime

ProductVersionNumber
4.9.0.0

FileTypeExtension
dll

ObjectFileType
Dynamic link library

Compressed bundles
File identification
MD5 44fb013934b5ac96d389c7180386ac0f
SHA1 93327672b22d44c40f3aa51688415d3cb41b6021
SHA256 9f31f02a60a3e84a25318dab0b8bc8d41e1910472ab7d969784638c141aa5d38
ssdeep
192:hPz6TDCd8CCg2OwlhQw5xE4pX6pdNAqYlF:hPe6GCCUH4wpHslF

authentihash 5967149dd9685a28c4d11b39d511a72736484d2a9944d260309c9af7136a07af
imphash a4a2fb802e838b4611070ad0dcbe92c5
File size 8.5 KB ( 8704 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID UPX compressed Win32 Executable (38.2%)
Win32 EXE Yoda's Crypter (37.5%)
Win32 Dynamic Link Library (generic) (9.2%)
Win32 Executable (generic) (6.3%)
OS/2 Executable (generic) (2.8%)
Tags
pedll upx

VirusTotal metadata
First submission 2013-02-17 04:25:06 UTC ( 5 years, 7 months ago )
Last submission 2018-08-15 21:27:58 UTC ( 1 month ago )
File names plds4.dll
plds4.dll
plds4.dll
plds4.dll
plds4.dll
34302-9
plds4.dll
plds4
plds4.dll
plds4.dll
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!