× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: a935bb65de22e4c8ab5c03c03c958068200b7e801f3721ef983747e507c3e60e
File name: captlib.dll
Detection ratio: 0 / 69
Analysis date: 2019-01-12 14:51:44 UTC ( 2 months, 1 week ago )
Antivirus Result Update
Acronis 20190111
Ad-Aware 20190112
AegisLab 20190112
AhnLab-V3 20190112
Alibaba 20180921
ALYac 20190112
Antiy-AVL 20190112
Arcabit 20190112
Avast 20190112
Avast-Mobile 20190112
AVG 20190112
Avira (no cloud) 20190112
Babable 20180918
Baidu 20190111
BitDefender 20190112
Bkav 20190108
CAT-QuickHeal 20190111
ClamAV 20190112
CMC 20190111
Comodo 20190112
CrowdStrike Falcon (ML) 20181023
Cybereason 20190109
Cylance 20190112
Cyren 20190112
DrWeb 20190112
eGambit 20190112
Emsisoft 20190112
Endgame 20181108
ESET-NOD32 20190112
F-Prot 20190112
F-Secure 20190111
Fortinet 20190112
GData 20190112
Ikarus 20190112
Sophos ML 20181128
Jiangmin 20190112
K7AntiVirus 20190112
K7GW 20190112
Kaspersky 20190112
Kingsoft 20190112
Malwarebytes 20190112
MAX 20190112
McAfee 20190112
McAfee-GW-Edition 20190112
Microsoft 20190112
eScan 20190112
NANO-Antivirus 20190112
Palo Alto Networks (Known Signatures) 20190112
Panda 20190112
Qihoo-360 20190112
Rising 20190112
SentinelOne (Static ML) 20181223
Sophos AV 20190112
SUPERAntiSpyware 20190109
Symantec 20190112
TACHYON 20190112
Tencent 20190112
TheHacker 20190106
TotalDefense 20190112
Trapmine 20190103
TrendMicro 20190112
TrendMicro-HouseCall 20190112
Trustlook 20190112
VBA32 20190111
ViRobot 20190111
Webroot 20190112
Yandex 20190111
Zillya 20190111
ZoneAlarm by Check Point 20190112
Zoner 20190112
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © Babylon Ltd. 1997-2013

Product Babylon Client
Original name captlib
Internal name captlib
File version 10.0.1.18
Description Babylon Information Tool
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2013-02-26 13:49:21
Entry Point 0x00012B6B
Number of sections 6
PE sections
PE imports
RegCreateKeyExW
RegDeleteValueW
RegCloseKey
RegSetValueExW
RegQueryInfoKeyW
RegEnumKeyExW
RegOpenKeyExW
RegEnumValueW
RegDeleteKeyW
GetTextExtentPoint32W
GetTextMetricsW
DeleteDC
GetTextFaceW
TranslateCharsetInfo
GetTextCharset
GetObjectType
GetCharacterPlacementW
GetNearestColor
GetCurrentPositionEx
GetCharWidth32W
SetPixel
GetPixel
LPtoDP
CreateDCW
GetFontData
GetDCOrgEx
GetTextAlign
GetLayout
GetStdHandle
GetConsoleOutputCP
WaitForSingleObject
HeapDestroy
GetFileAttributesW
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
GetLocaleInfoA
FreeEnvironmentStringsW
SetStdHandle
GetCPInfo
GetStringTypeA
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
FreeLibrary
InitializeCriticalSection
LoadResource
TlsGetValue
SetLastError
InterlockedDecrement
WriteProcessMemory
GetModuleFileNameW
IsDebuggerPresent
HeapAlloc
GetModuleFileNameA
lstrcmpiW
UnhandledExceptionFilter
LoadLibraryExW
MultiByteToWideChar
CreateRemoteThread
SetFilePointer
CreateThread
SetUnhandledExceptionFilter
TerminateProcess
WriteConsoleA
SetEndOfFile
GetCurrentThreadId
InterlockedIncrement
WriteConsoleW
GetSystemWow64DirectoryW
InitializeCriticalSectionAndSpinCount
HeapFree
EnterCriticalSection
SetHandleCount
LoadLibraryW
GetVersionExW
GetOEMCP
QueryPerformanceCounter
GetTickCount
TlsAlloc
FlushFileBuffers
LoadLibraryA
RtlUnwind
GlobalSize
GetStartupInfoA
OpenProcess
CreateDirectoryW
GlobalLock
GetProcessHeap
GetProcAddress
CreateFileW
GetFileType
TlsSetValue
CreateFileA
ExitProcess
LeaveCriticalSection
GetLastError
LCMapStringW
VirtualAllocEx
GlobalFree
GetConsoleCP
LCMapStringA
GetEnvironmentStringsW
GlobalUnlock
lstrlenW
SizeofResource
VirtualFreeEx
GetCurrentProcessId
WideCharToMultiByte
HeapSize
GetCommandLineA
RaiseException
TlsFree
GetModuleHandleA
ReadFile
CloseHandle
GetACP
GetModuleHandleW
GetEnvironmentStrings
IsValidCodePage
HeapCreate
FindResourceW
VirtualFree
Sleep
VirtualAlloc
AccessibleObjectFromPoint
VarUI4FromStr
VariantChangeType
SysStringByteLen
VariantClear
SysAllocString
SysFreeString
SysAllocStringByteLen
VariantInit
EnumProcesses
EnumProcessModules
GetModuleFileNameExW
SHGetFolderPathW
StrStrIW
PathFindExtensionW
PathFindFileNameW
SetFocus
RedrawWindow
GetForegroundWindow
GetParent
UpdateWindow
IntersectRect
EqualRect
EnumWindows
FindWindowW
GetMessageW
PostQuitMessage
LockSetForegroundWindow
GetWindowThreadProcessId
IsWindow
GetWindowRect
SetRectEmpty
UnhookWindowsHookEx
SetCapture
ReleaseCapture
WindowFromPoint
CopyRect
ChildWindowFromPoint
IsRectEmpty
TranslateMessage
PostMessageW
CallNextHookEx
GetDC
GetKeyState
GetCursorPos
ReleaseDC
GetDoubleClickTime
PtInRect
IsWindowVisible
OffsetRect
GetClassInfoW
UnionRect
ScreenToClient
SetRect
InvalidateRect
GetClassNameW
AttachThreadInput
GetClientRect
GetWindowTextW
SetWindowsHookExW
LoadCursorW
SendMessageTimeoutW
DispatchMessageW
GetWindowLongW
SetForegroundWindow
CharNextW
GetAncestor
SetCursor
InternetSetCookieExW
InternetGetCookieExW
CreateStreamOnHGlobal
CoTaskMemAlloc
WriteClassStm
OleSaveToStream
CoTaskMemRealloc
CoCreateInstance
GetHGlobalFromStream
CoTaskMemFree
PE exports
Number of PE resources by type
RT_MANIFEST 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 2
PE resources
Debug information
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
9.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
10.0.1.18

LanguageCode
English (U.S.)

FileFlagsMask
0x0000

FileDescription
Babylon Information Tool

ImageFileCharacteristics
Executable, 32-bit, DLL

CharacterSet
Windows, Latin1

InitializedDataSize
62976

EntryPoint
0x12b6b

OriginalFileName
captlib

MIMEType
application/octet-stream

LegalCopyright
Copyright Babylon Ltd. 1997-2013

FileVersion
10.0.1.18

TimeStamp
2013:02:26 14:49:21+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
captlib

ProductVersion
10.0.1.18

SubsystemVersion
5.0

OSVersion
5.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Babylon Ltd.

CodeSize
175104

ProductName
Babylon Client

ProductVersionNumber
10.0.1.18

FileTypeExtension
dll

ObjectFileType
Dynamic link library

Compressed bundles
File identification
MD5 aa8889eba2ad38cccffeeda336fc1f9c
SHA1 c9dcf1c298300e321b53bee89d7cc7957be78c67
SHA256 a935bb65de22e4c8ab5c03c03c958068200b7e801f3721ef983747e507c3e60e
ssdeep
3072:L9CBLBuIH/+2Dpy7KztaZW/2fjws+cPi6E0UGqIts95y98V1Mi:pg1Jpy7+tJ2fPPu0qItsCOVWi

authentihash d0e0ae329df41dbe2cd90f9b51bd5bc4678d780d61746bc37d7b666b0c6f3a66
imphash 73cf7077b5a6f89b5931e551ccd9155f
File size 233.5 KB ( 239104 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (41.0%)
Win64 Executable (generic) (36.3%)
Win32 Dynamic Link Library (generic) (8.6%)
Win32 Executable (generic) (5.9%)
OS/2 Executable (generic) (2.6%)
Tags
pedll

VirusTotal metadata
First submission 2013-04-14 07:15:01 UTC ( 5 years, 11 months ago )
Last submission 2019-01-12 14:51:44 UTC ( 2 months, 1 week ago )
File names captlib.dll
captlib
vt-upload-oethQ
Captlib.dll
captlib.dll
captlib.dll
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!