× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: b91e2e0765bf77ca26182131118d5699fef6975b35e3c8f3c845681375d1ee19
File name: c182f8192452721eac4b7e1b2ac554f2492194d2
Detection ratio: 44 / 67
Analysis date: 2017-12-19 10:11:33 UTC ( 6 months ago ) View latest
Antivirus Result Update
Ad-Aware Gen:Variant.Razy.227270 20171219
AegisLab Troj.W32.Dovs!c 20171219
AhnLab-V3 Trojan/Win32.Emotet.R215813 20171219
Arcabit Trojan.Razy.D377C6 20171219
Avast Win32:Malware-gen 20171219
AVG Win32:Malware-gen 20171219
Avira (no cloud) TR/Crypt.EPACK.Gen2 20171219
AVware Trojan.Win32.Generic!BT 20171219
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9999 20171219
BitDefender Gen:Variant.Razy.227270 20171219
Bkav HW32.Packed.E8D4 20171218
ClamAV Win.Trojan.Emotet-6402770-0 20171219
CrowdStrike Falcon (ML) malicious_confidence_100% (W) 20171016
Cybereason malicious.924527 20171103
Cylance Unsafe 20171219
Cyren W32/Trojan.JGNN-3176 20171219
Emsisoft Gen:Variant.Razy.227270 (B) 20171219
Endgame malicious (high confidence) 20171130
ESET-NOD32 a variant of Win32/Kryptik.GART 20171219
F-Secure Gen:Variant.Razy.227270 20171219
Fortinet W32/Kryptik.FZTF!tr 20171219
GData Win32.Trojan-Spy.Emotet.HY 20171219
Ikarus Win32.Outbreak 20171218
Sophos ML heuristic 20170914
K7AntiVirus Trojan ( 00520ed61 ) 20171219
K7GW Trojan ( 00520ed61 ) 20171219
Kaspersky Trojan.Win32.Dovs.ebh 20171219
Malwarebytes Trojan.Emotet 20171219
MAX malware (ai score=99) 20171219
McAfee Artemis!3E1074C4B868 20171219
McAfee-GW-Edition BehavesLike.Win32.RansomLocky.nc 20171219
eScan Gen:Variant.Razy.227270 20171219
Palo Alto Networks (Known Signatures) generic.ml 20171219
Panda Trj/GdSda.A 20171218
Qihoo-360 HEUR/QVM20.1.EE61.Malware.Gen 20171219
SentinelOne (Static ML) static engine - malicious 20171207
Sophos AV Mal/Generic-S 20171219
SUPERAntiSpyware Trojan.Agent/Gen-Falprod 20171219
Symantec Trojan.Emotet 20171219
TrendMicro-HouseCall TSPY_EMOTET.SMZD17C 20171219
VIPRE Trojan.Win32.Generic!BT 20171219
ViRobot Trojan.Win32.Z.Emotet.93696 20171219
Webroot W32.Trojan.Emotet 20171219
ZoneAlarm by Check Point Trojan.Win32.Dovs.ebh 20171219
Alibaba 20171219
ALYac 20171219
Antiy-AVL 20171219
Avast-Mobile 20171218
CAT-QuickHeal 20171219
CMC 20171218
Comodo 20171219
DrWeb 20171219
eGambit 20171219
F-Prot 20171219
Jiangmin 20171218
Kingsoft 20171219
Microsoft 20171219
NANO-Antivirus 20171219
nProtect 20171219
Rising 20171219
Symantec Mobile Insight 20171219
Tencent 20171219
TheHacker 20171210
TotalDefense 20171219
Trustlook 20171219
VBA32 20171218
WhiteArmor 20171204
Yandex 20171216
Zillya 20171218
Zoner 20171219
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
© Microsoft Corporation. All r

Product Microsof
Original name ds32gt.dll
Internal name ds32gt.d
File version 6.1
Description ODBC Driver Setu
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 1993-12-20 20:50:11
Entry Point 0x00001670
Number of sections 5
PE sections
PE imports
SetLocalTime
GetLastError
lstrcpyW
TerminateThread
GetSystemInfo
GetModuleHandleA
Sleep
ReleaseActCtx
lstrcmpiW
lstrcatW
GetLocalTime
GetCurrentThread
I_RpcSendReceive
GetSystemMetrics
SetTimer
GetForegroundWindow
GetMenu
GetActiveWindow
DestroyAcceleratorTable
DlgDirSelectComboBoxExW
GetFocus
GetMenuCheckMarkDimensions
LoadAcceleratorsW
ShowWindow
GetMenuDefaultItem
OpenDriver
timeGetSystemTime
WinVerifyTrustEx
FindCertsByIssuer
SCardGetProviderIdA
OleNoteObjectVisible
CoInternetGetSession
Number of PE resources by type
RT_ICON 2
RT_ACCELERATOR 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 5
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
5.0

LinkerVersion
10.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
2.5.2.0

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
84992

EntryPoint
0x1670

OriginalFileName
ds32gt.dll

MIMEType
application/octet-stream

LegalCopyright
Microsoft Corporation. All r

FileVersion
6.1

TimeStamp
1993:12:20 21:50:11+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
ds32gt.d

ProductVersion
6.1

FileDescription
ODBC Driver Setu

OSVersion
5.0

FileOS
Windows NT 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Micros

CodeSize
0

ProductName
Microsof

ProductVersionNumber
2.5.2.0

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 3e1074c4b86806e2bfec23ee9d6d648e
SHA1 c182f8192452721eac4b7e1b2ac554f2492194d2
SHA256 b91e2e0765bf77ca26182131118d5699fef6975b35e3c8f3c845681375d1ee19
ssdeep
1536:ik8v7iIw+UhJKjd5WcOdymHA0UfuX2vIe8W3L3FG8j2Y:iNv7iIwbDKLWcn+A9GX2AA3vX

authentihash 158bcba01c8e02e56210a9b9ea5c3cc044ec9996cd9dbea96a1b5fcbf5967f1b
imphash 121e29e195f51e4869ab9518c52908fe
File size 91.5 KB ( 93696 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Dynamic Link Library (generic) (38.4%)
Win32 Executable (generic) (26.3%)
OS/2 Executable (generic) (11.8%)
Generic Win/DOS Executable (11.6%)
DOS Executable Generic (11.6%)
Tags
peexe

VirusTotal metadata
First submission 2017-12-18 17:41:21 UTC ( 6 months ago )
Last submission 2018-05-13 17:58:54 UTC ( 1 month, 1 week ago )
File names c182f8192452721eac4b7e1b2ac554f2492194d2
ds32gt.dll
ds32gt.d
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!