× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: b13aba1882f0b1743e88b381b3c6af12c8957bcf3b85197aba912da34e58bf20
File name: f_D50486A22F394024B7E9172CA5741AF0
Detection ratio: 1 / 65
Analysis date: 2017-09-10 12:03:12 UTC ( 1 year, 6 months ago )
Antivirus Result Update
Cylance Unsafe 20170910
Ad-Aware 20170910
AegisLab 20170910
AhnLab-V3 20170910
Alibaba 20170910
ALYac 20170910
Antiy-AVL 20170910
Arcabit 20170910
Avast 20170910
AVG 20170910
Avira (no cloud) 20170909
AVware 20170906
Baidu 20170908
BitDefender 20170910
Bkav 20170909
CAT-QuickHeal 20170909
ClamAV 20170910
CMC 20170902
Comodo 20170910
CrowdStrike Falcon (ML) 20170804
Cyren 20170910
DrWeb 20170910
Emsisoft 20170910
Endgame 20170821
ESET-NOD32 20170910
F-Prot 20170910
F-Secure 20170910
Fortinet 20170910
GData 20170910
Ikarus 20170910
Sophos ML 20170822
Jiangmin 20170909
K7AntiVirus 20170910
K7GW 20170910
Kaspersky 20170910
Kingsoft 20170910
Malwarebytes 20170910
MAX 20170910
McAfee 20170910
McAfee-GW-Edition 20170910
Microsoft 20170910
eScan 20170910
NANO-Antivirus 20170910
nProtect 20170910
Palo Alto Networks (Known Signatures) 20170910
Panda 20170910
Qihoo-360 20170910
Rising 20170910
SentinelOne (Static ML) 20170806
Sophos AV 20170910
SUPERAntiSpyware 20170910
Symantec 20170909
Symantec Mobile Insight 20170908
Tencent 20170910
TheHacker 20170907
TotalDefense 20170910
TrendMicro 20170910
TrendMicro-HouseCall 20170910
Trustlook 20170910
VBA32 20170907
VIPRE 20170910
ViRobot 20170909
Webroot 20170910
WhiteArmor 20170829
Yandex 20170908
Zillya 20170909
ZoneAlarm by Check Point 20170910
Zoner 20170910
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2013

Product Java(TM) Platform SE 7 U15
Original name javacpl.cpl
Internal name Java(TM) Control Panel
File version 7.0.150.3
Description Java(TM) Control Panel
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2013-02-15 22:39:28
Entry Point 0x0000583B
Number of sections 5
PE sections
PE imports
GetStdHandle
GetDriveTypeW
FileTimeToSystemTime
WaitForSingleObject
HeapDestroy
EncodePointer
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
LocalAlloc
lstrcatA
FreeEnvironmentStringsW
SetStdHandle
WideCharToMultiByte
InterlockedExchange
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
GetOEMCP
LocalFree
GetEnvironmentVariableA
FindClose
InterlockedDecrement
FormatMessageA
GetFullPathNameW
OutputDebugStringA
SetLastError
PeekNamedPipe
GetModuleFileNameW
IsDebuggerPresent
ExitProcess
FlushFileBuffers
GetModuleFileNameA
UnhandledExceptionFilter
TlsGetValue
MultiByteToWideChar
SetFilePointer
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
GetSystemDirectoryA
DecodePointer
SetEnvironmentVariableA
TerminateProcess
SetEndOfFile
GetCurrentThreadId
InterlockedIncrement
WriteConsoleW
InitializeCriticalSectionAndSpinCount
HeapFree
EnterCriticalSection
SetHandleCount
LoadLibraryW
SetEvent
QueryPerformanceCounter
GetTickCount
TlsAlloc
GetVersionExA
LoadLibraryA
RtlUnwind
FreeLibrary
GetDateFormatA
GetWindowsDirectoryA
GetStartupInfoW
GetProcAddress
GetProcessHeap
CompareStringW
GetFileInformationByHandle
GetTimeFormatA
FindFirstFileExW
GetTimeZoneInformation
CreateFileW
GetFileType
TlsSetValue
CreateFileA
HeapAlloc
LeaveCriticalSection
GetNativeSystemInfo
GetLastError
LCMapStringW
lstrlenA
GetConsoleCP
GetEnvironmentStringsW
GetShortPathNameA
FileTimeToLocalFileTime
GetCurrentDirectoryW
GetCurrentProcessId
GetCPInfo
HeapSize
GetCommandLineA
RaiseException
TlsFree
GetModuleHandleA
ReadFile
CloseHandle
GetACP
GetModuleHandleW
CreateProcessA
IsValidCodePage
HeapCreate
GetLongPathNameA
Sleep
OpenEventA
SysAllocStringByteLen
SysFreeString
SysStringLen
VariantClear
SysAllocString
wsprintfA
MessageBoxA
LoadStringA
StringFromCLSID
CoTaskMemFree
PE exports
Number of PE resources by type
RT_ICON 12
RT_STRING 11
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 15
ITALIAN NEUTRAL 1
SWEDISH NEUTRAL 1
CHINESE TRADITIONAL 1
SPANISH NEUTRAL 1
GERMAN NEUTRAL 1
CHINESE SIMPLIFIED 1
PORTUGUESE BRAZILIAN 1
JAPANESE DEFAULT 1
FRENCH NEUTRAL 1
KOREAN 1
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
5.1

LinkerVersion
10.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
10.15.2.3

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
70656

EntryPoint
0x583b

OriginalFileName
javacpl.cpl

MIMEType
application/octet-stream

LegalCopyright
Copyright 2013

FileVersion
7.0.150.3

TimeStamp
2013:02:15 23:39:28+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
Java(TM) Control Panel

ProductVersion
7.0.150.3

FileDescription
Java(TM) Control Panel

OSVersion
5.1

FileOS
Windows NT 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Oracle Corporation

CodeSize
80384

ProductName
Java(TM) Platform SE 7 U15

ProductVersionNumber
7.0.150.3

FileTypeExtension
dll

ObjectFileType
Dynamic link library

CarbonBlack CarbonBlack acts as a surveillance camera for computers
Compressed bundles
File identification
MD5 79ab1adfdc951dd19a3234c469cff2cd
SHA1 de163e13500cfcffc0d1ae1f30f4ae2ac1cd5804
SHA256 b13aba1882f0b1743e88b381b3c6af12c8957bcf3b85197aba912da34e58bf20
ssdeep
1536:hcKetxMr5UKGFJZ8cfF8QPgmy2vdEUtkOx88kInVZ1n+BmltDzVgmk7qjh3rmKP+:hQe7hMFR1dGYuePt7jZqMN9HG

authentihash 9d175d939cd283301fa70b7e9b7a411e2ab9d0c0e9422e35bd01178dd6dc2476
imphash b018455984decada33b34f095e22d8db
File size 140.5 KB ( 143872 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (34.8%)
Win64 Executable (generic) (30.8%)
Win 9x/ME Control Panel applet (17.3%)
Win32 Dynamic Link Library (generic) (7.3%)
Win32 Executable (generic) (5.0%)
Tags
pedll

VirusTotal metadata
First submission 2013-02-19 20:45:30 UTC ( 6 years ago )
Last submission 2016-10-19 15:00:18 UTC ( 2 years, 5 months ago )
File names is-bnqlg.tmp
is-k9uhk.tmp
is-73062.tmp
is-9m2nb.tmp
is-26fqd.tmp
is-n2neo.tmp
is-i1ma1.tmp
is-0301r.tmp
is-kmrir.tmp
sbs_ve_ambr_20160301211108.839_ 181026
is-b1a47.tmp
is-m3nko.tmp
is-npia2.tmp
is-1rrjl.tmp
is-k4670.tmp
is-64rvs.tmp
is-2k5gu.tmp
is-nv5bd.tmp
is-u7rhb.tmp
is-l2d8i.tmp
is-2ac57.tmp
is-rk7ls.tmp
is-rjp9a.tmp
javacpl.cpl
is-p5019.tmp
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!