× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: a55a01d4ba629bcea2c3e04156948cb970797cdaca62cf1acc7a44ff706bc222
File name: HL_GF_LIB.dll
Detection ratio: 0 / 47
Analysis date: 2014-01-01 18:32:30 UTC ( 3 years, 8 months ago ) View latest
Antivirus Result Update
Ad-Aware 20140101
Yandex 20140101
AhnLab-V3 20140101
AntiVir 20140101
Antiy-AVL 20140101
Avast 20140101
AVG 20140101
Baidu-International 20131213
BitDefender 20140101
Bkav 20140101
ByteHero 20131227
CAT-QuickHeal 20140101
ClamAV 20140101
Commtouch 20140101
Comodo 20140101
DrWeb 20140101
Emsisoft 20140101
ESET-NOD32 20140101
F-Prot 20140101
Fortinet 20140101
GData 20140101
Ikarus 20140101
Jiangmin 20140101
K7AntiVirus 20131231
K7GW 20131231
Kaspersky 20140101
Kingsoft 20130829
Malwarebytes 20140101
McAfee 20140101
McAfee-GW-Edition 20140101
Microsoft 20140101
eScan 20140101
NANO-Antivirus 20140101
Norman 20140101
nProtect 20140101
Panda 20140101
Rising 20140101
Sophos AV 20140101
SUPERAntiSpyware 20131231
Symantec 20140101
TheHacker 20131231
TotalDefense 20131231
TrendMicro 20140101
TrendMicro-HouseCall 20140101
VBA32 20140101
VIPRE 20140101
ViRobot 20140101
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (C) 2013 - by Hell Lord

Product Hell Lord
Original name HL_GF_LIB.dll
Internal name HL_GF_LIB
File version 1, 0, 0, 0
Description GunnyFire Library
Comments Hell Lord
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2014-01-01 10:06:54
Entry Point 0x000020B9
Number of sections 6
PE sections
PE imports
HeapFree
GetStdHandle
EnterCriticalSection
LCMapStringW
SetHandleCount
GetOEMCP
LCMapStringA
HeapDestroy
ExitProcess
TlsAlloc
GetEnvironmentStringsW
GetModuleFileNameA
RtlUnwind
LoadLibraryA
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetEnvironmentStrings
GetCurrentProcessId
GetCPInfo
InterlockedDecrement
MultiByteToWideChar
FreeEnvironmentStringsW
GetCommandLineA
GetProcAddress
GetStringTypeA
WideCharToMultiByte
TlsFree
GetModuleHandleA
WriteFile
GetStartupInfoA
GetACP
HeapReAlloc
GetStringTypeW
GetCurrentThreadId
TerminateProcess
InitializeCriticalSection
HeapCreate
VirtualFree
TlsGetValue
GetFileType
TlsSetValue
HeapAlloc
GetVersion
LeaveCriticalSection
VirtualAlloc
InterlockedIncrement
GetWindowThreadProcessId
EnumWindows
EnumChildWindows
SendMessageA
CallWindowProcA
GetClassNameA
SetWindowLongA
Number of PE resources by type
RT_VERSION 1
Number of PE resources by language
ENGLISH US 1
PE resources
ExifTool file metadata
SubsystemVersion
4.0

Comments
Hell Lord

LinkerVersion
6.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.0.0.0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
GunnyFire Library

CharacterSet
Unicode

InitializedDataSize
20480

EntryPoint
0x20b9

OriginalFileName
HL_GF_LIB.dll

MIMEType
application/octet-stream

LegalCopyright
Copyright (C) 2013 - by Hell Lord

FileVersion
1, 0, 0, 0

TimeStamp
2014:01:01 11:06:54+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
HL_GF_LIB

ProductVersion
1, 0, 0, 0

UninitializedDataSize
0

OSVersion
4.0

FileOS
Windows NT 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Hell Lord

CodeSize
24576

ProductName
Hell Lord

ProductVersionNumber
1.0.0.0

FileTypeExtension
dll

ObjectFileType
Dynamic link library

File identification
MD5 0966231369c16f95f3d2323ca77cc248
SHA1 2b4f37cefc8009f1cc74549b90b1ae96bd4b8a10
SHA256 a55a01d4ba629bcea2c3e04156948cb970797cdaca62cf1acc7a44ff706bc222
ssdeep
768:i3AwIiKTTH296Yoj7h52iB9Pf+fAaBd8Qo4tnC3TfKmOpgmi3YJdWuA/73OjHkeD:/TTWDoLrbMqQoNTCRcYJELT3OjHP4Re

authentihash 71693eb23f7f91168af58ed5f01eed46e4bc730be264cc0eefc6fd6ce6382747
imphash 7938eba402adcb791c8b0d665e3f2fa7
File size 68.0 KB ( 69632 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (67.3%)
Win32 Dynamic Link Library (generic) (14.2%)
Win32 Executable (generic) (9.7%)
Generic Win/DOS Executable (4.3%)
DOS Executable Generic (4.3%)
Tags
pedll

VirusTotal metadata
First submission 2014-01-01 18:32:30 UTC ( 3 years, 8 months ago )
Last submission 2014-01-01 18:32:30 UTC ( 3 years, 8 months ago )
File names HL_GF_LIB
HL_GF_LIB.dll
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!