× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: a09108b47f34016e2d25be2e10648d97f26f0ddc72f75c6c76216d9f2b22168c
File name: 3rdParty Gatewall plugin
Detection ratio: 0 / 54
Analysis date: 2014-09-28 19:16:06 UTC ( 4 years, 6 months ago )
Antivirus Result Update
Ad-Aware 20140928
AegisLab 20140928
Yandex 20140928
AhnLab-V3 20140928
Antiy-AVL 20140928
Avast 20140928
AVG 20140928
Avira (no cloud) 20140928
AVware 20140927
Baidu-International 20140928
BitDefender 20140928
ByteHero 20140928
CAT-QuickHeal 20140927
ClamAV 20140928
CMC 20140925
Comodo 20140928
Cyren 20140928
DrWeb 20140928
Emsisoft 20140928
ESET-NOD32 20140928
F-Prot 20140928
F-Secure 20140928
Fortinet 20140928
GData 20140928
Ikarus 20140928
Jiangmin 20140927
K7AntiVirus 20140926
K7GW 20140926
Kaspersky 20140928
Kingsoft 20140928
Malwarebytes 20140928
McAfee 20140928
McAfee-GW-Edition 20140928
Microsoft 20140928
eScan 20140928
NANO-Antivirus 20140928
Norman 20140928
nProtect 20140928
Panda 20140928
Qihoo-360 20140928
Rising 20140927
Sophos AV 20140928
SUPERAntiSpyware 20140928
Symantec 20140928
Tencent 20140928
TheHacker 20140924
TotalDefense 20140928
TrendMicro 20140928
TrendMicro-HouseCall 20140928
VBA32 20140926
VIPRE 20140928
ViRobot 20140928
Zillya 20140928
Zoner 20140925
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file.
Authenticode signature block and FileVersionInfo properties
Copyright
Copyright (c) Entensys 2001 - 2010

Publisher Entensys
Product 3rdParty Gatewall plugin
Original name 3rdParty.dll
Internal name 3rdParty Gatewall plugin
File version 1, 2, 4000, 16585
Description 3rdParty Gatewall plugin
Signature verification Signed file, verified signature
Signing date 8:41 AM 11/15/2011
Signers
[+] Entensys
Status Certificate out of its validity period
Issuer None
Valid from 1:00 AM 1/25/2011
Valid to 12:59 AM 1/26/2012
Valid usage Code Signing
Algorithm SHA1
Thumbprint F4E20CDD21B1FE5E6B6AF9F29C7C400A7D3EC246
Serial number 39 B3 83 00 FF 9C 34 6D 5B 0B C5 8C 53 92 CE BE
[+] VeriSign Class 3 Code Signing 2010 CA
Status Certificate out of its validity period
Issuer None
Valid from 1:00 AM 9/30/2010
Valid to 12:59 AM 1/2/2014
Valid usage Client Auth, Code Signing
Algorithm SHA1
Thumbprint 14FCF0BB187D563B568EEA5FC888A53D288698D6
Serial number 4D 62 90 E5 8C 54 F0 F1 EB 17 34 1A 13 10 E6 A4
[+] VeriSign Class 3 Public Primary Certification Authority (PCA3 G1 SHA1)
Status Valid
Issuer None
Valid from 1:00 AM 1/29/1996
Valid to 12:59 AM 8/3/2028
Valid usage Server Auth, Client Auth, Email Protection, Code Signing
Algorithm SHA1
Thumbprint A1DB6393916F17E4185509400415C70240B0AE6B
Serial number 3C 91 31 CB 1F F6 D0 1B 0E 9A B8 D0 44 BF 12 BE
Counter signers
[+] VeriSign Time Stamping Services Signer - G2
Status Certificate out of its validity period
Issuer None
Valid from 1:00 AM 6/15/2007
Valid to 12:59 AM 6/15/2012
Valid usage Timestamp Signing
Algorithm SHA1
Thumbrint ADA8AAA643FF7DC38DD40FA4C97AD559FF4846DE
Serial number 38 25 D7 FA F8 61 AF 9E F4 90 E7 26 B5 D6 5A D5
[+] VeriSign Time Stamping Services CA
Status Certificate out of its validity period
Issuer None
Valid from 1:00 AM 12/4/2003
Valid to 12:59 AM 12/4/2013
Valid usage Timestamp Signing
Algorithm SHA1
Thumbrint F46AC0C6EFBB8C6A14F55F09E2D37DF4C0DE012D
Serial number 47 BF 19 95 DF 8D 52 46 43 F7 DB 6D 48 0D 31 A4
[+] Thawte Timestamping CA
Status Valid
Issuer None
Valid from 1:00 AM 1/1/1997
Valid to 12:59 AM 1/1/2021
Valid usage Timestamp Signing
Algorithm MD5
Thumbrint BE36A4562FB2EE05DBB3D32323ADF445084ED656
Serial number 00
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2011-11-15 07:39:51
Entry Point 0x00047585
Number of sections 5
PE sections
Number of PE resources by type
RT_VERSION 2
RT_MANIFEST 1
Number of PE resources by language
ENGLISH US 2
RUSSIAN 1
PE resources
Compressed bundles
File identification
MD5 f6c478cb2dbfa5d0a570cc10ccb9b273
SHA1 7c253a26db6e261b8708645e43c24f319cc95d49
SHA256 a09108b47f34016e2d25be2e10648d97f26f0ddc72f75c6c76216d9f2b22168c
ssdeep
49152:CPl5Jb6TFkoJ6KutGaX0svTscKuJGaX0lhCz9:O7Z1R

authentihash 138d4c427a1672282922e9c5434c8a6b7d31f50bad8482e73ea8c311bf6853d7
imphash 631aa66612c9694aa0bb5ba2186c1b07
File size 2.1 MB ( 2176512 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID Win32 Dynamic Link Library (generic) (43.5%)
Win32 Executable (generic) (29.8%)
Generic Win/DOS Executable (13.2%)
DOS Executable Generic (13.2%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
Tags
pedll signed

VirusTotal metadata
First submission 2014-08-31 18:57:29 UTC ( 4 years, 7 months ago )
Last submission 2014-08-31 18:57:29 UTC ( 4 years, 7 months ago )
File names filE4A17BADE2BF2013B3FC2C17FA49A0FF
3rdParty Gatewall plugin
3rdParty.dll
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!