× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: dfe4222c135c369797b101929bcb8b7cb303fd446dee7a24fd312395842cd070
File name: processmanager.dll
Detection ratio: 3 / 61
Analysis date: 2017-06-19 16:45:32 UTC ( 5 months, 1 week ago ) View latest
Antivirus Result Update
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9982 20170619
CrowdStrike Falcon (ML) malicious_confidence_68% (D) 20170420
ESET-NOD32 a variant of MSIL/Injector.LSL 20170619
Ad-Aware 20170619
AegisLab 20170618
AhnLab-V3 20170619
Alibaba 20170619
ALYac 20170619
Antiy-AVL 20170619
Arcabit 20170619
Avast 20170619
AVG 20170619
Avira (no cloud) 20170619
AVware 20170619
BitDefender 20170619
Bkav 20170619
CAT-QuickHeal 20170619
ClamAV 20170619
CMC 20170619
Comodo 20170619
Cyren 20170619
DrWeb 20170619
Emsisoft 20170619
Endgame 20170615
F-Prot 20170619
F-Secure 20170619
Fortinet 20170619
GData 20170619
Ikarus 20170619
Sophos ML 20170607
Jiangmin 20170619
K7AntiVirus 20170619
K7GW 20170619
Kaspersky 20170619
Kingsoft 20170619
Malwarebytes 20170619
McAfee 20170619
McAfee-GW-Edition 20170619
Microsoft 20170619
eScan 20170619
NANO-Antivirus 20170619
nProtect 20170619
Palo Alto Networks (Known Signatures) 20170619
Panda 20170619
Qihoo-360 20170619
Rising 20170617
SentinelOne (Static ML) 20170516
Sophos AV 20170619
SUPERAntiSpyware 20170619
Symantec 20170619
Symantec Mobile Insight 20170614
Tencent 20170619
TheHacker 20170618
TrendMicro 20170619
TrendMicro-HouseCall 20170619
Trustlook 20170619
VBA32 20170619
VIPRE 20170619
ViRobot 20170619
Webroot 20170619
WhiteArmor 20170616
Yandex 20170616
Zillya 20170619
ZoneAlarm by Check Point 20170619
Zoner 20170619
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2015

Product processmanager
Original name processmanager.dll
Internal name processmanager.dll
File version 1.0.0.0
Description processmanager
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2015-12-20 16:02:27
Entry Point 0x00005A1E
Number of sections 4
.NET details
Module Version ID 75e39933-e0b5-4f57-bb8b-2c3ac33cfd2e
TypeLib ID 1c0f04a9-4503-494a-8695-b93bbd8deaa3
PE sections
PE imports
_CorDllMain
Number of PE resources by type
RT_ICON 7
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 9
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
11.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.0.0.0

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
13312

EntryPoint
0x5a1e

OriginalFileName
processmanager.dll

MIMEType
application/octet-stream

LegalCopyright
Copyright 2015

FileVersion
1.0.0.0

TimeStamp
2015:12:20 17:02:27+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
processmanager.dll

ProductVersion
1.0.0.0

FileDescription
processmanager

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CodeSize
15360

ProductName
processmanager

ProductVersionNumber
1.0.0.0

FileTypeExtension
dll

ObjectFileType
Dynamic link library

AssemblyVersion
1.0.0.0

File identification
MD5 d628d2a9726b777961f2d1346f988767
SHA1 179ccf65842a6b7ea3a63028a3b392c44b79121a
SHA256 dfe4222c135c369797b101929bcb8b7cb303fd446dee7a24fd312395842cd070
ssdeep
384:79WboODZeRSLzPVVVKvjHvYl06q9bYB/ONbVIKoHdp7roJRXvPUJ/pl+CuR4PHtg:79WboWZ8EPVVViC0/57RqHA

authentihash 2774ef3320848f6dc99f070d11c8102ccc86a4cff4b977489180df963a6fdd31
imphash dae02f32a21e03ce65412f6e56942daa
File size 29.0 KB ( 29696 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic .NET DLL/Assembly (84.0%)
Win64 Executable (generic) (9.8%)
Win32 Dynamic Link Library (generic) (2.3%)
Win32 Executable (generic) (1.6%)
Win16/32 Executable Delphi generic (0.7%)
Tags
assembly pedll

VirusTotal metadata
First submission 2017-06-19 16:45:32 UTC ( 5 months, 1 week ago )
Last submission 2017-11-16 02:19:09 UTC ( 1 week, 1 day ago )
File names processmanager.dll
dfe4222c135c369797b101929bcb8b7cb303fd446dee7a24fd312395842cd070.bin
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!