× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: e22531717adf3eb42f718f6ce071a5ade097540d0e7bd43cca928a0af4d20312
File name: PackUpdater.dll
Detection ratio: 0 / 47
Analysis date: 2013-04-15 20:36:09 UTC ( 5 years, 8 months ago )
Antivirus Result Update
Yandex 20130415
AhnLab-V3 20130415
AntiVir 20130415
Antiy-AVL 20130415
Avast 20130415
AVG 20130415
BitDefender 20130415
ByteHero 20130415
CAT-QuickHeal 20130415
ClamAV 20130415
Commtouch 20130415
Comodo 20130415
DrWeb 20130415
Emsisoft 20130415
eSafe 20130415
ESET-NOD32 20130415
F-Prot 20130415
F-Secure 20130415
Fortinet 20130415
GData 20130415
Ikarus 20130415
Jiangmin 20130415
K7AntiVirus 20130412
K7GW 20130412
Kaspersky 20130415
Kingsoft 20130415
Malwarebytes 20130415
McAfee 20130415
McAfee-GW-Edition 20130415
Microsoft 20130415
eScan 20130415
NANO-Antivirus 20130415
Norman 20130415
nProtect 20130415
Panda 20130415
PCTools 20130415
Rising 20130412
Sophos AV 20130415
SUPERAntiSpyware 20130415
Symantec 20130415
TheHacker 20130415
TotalDefense 20130415
TrendMicro 20130415
TrendMicro-HouseCall 20130415
VBA32 20130415
VIPRE 20130415
ViRobot 20130415
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
(c) 2011 Mataes, 2007 ZERO_BiT

Product PackUpdater
Original name PackUpdater.dll
Internal name PackUpdater
Description Simple updater for Miranda IM premodified packs.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2012-12-31 09:37:17
Entry Point 0x00001F58
Number of sections 5
PE sections
PE imports
lstrcpynW
QueryPerformanceCounter
IsDebuggerPresent
EncodePointer
GetFileAttributesW
lstrlenW
CancelWaitableTimer
GetCurrentProcessId
UnhandledExceptionFilter
CreateDirectoryW
DeleteFileW
GetPrivateProfileIntW
InterlockedCompareExchange
GetPrivateProfileStringW
CreateWaitableTimerW
InterlockedExchange
SetUnhandledExceptionFilter
WriteFile
GetCurrentProcess
CloseHandle
GetSystemTimeAsFileTime
lstrcmpW
DecodePointer
GetCurrentThreadId
TerminateProcess
CreateFileW
CreateProcessW
Sleep
MoveFileW
GetTickCount
SetWaitableTimer
?_Xout_of_range@std@@YAXPBD@Z
?_Xlength_error@std@@YAXPBD@Z
_malloc_crt
?what@exception@std@@UBEPBDXZ
memset
_time64
__dllonexit
strncpy_s
??0exception@std@@QAE@ABQBD@Z
__clean_type_info_names_internal
_amsg_exit
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
??2@YAPAXI@Z
_lock
_onexit
_initterm_e
_CxxThrowException
_unlock
_crt_debugger_hook
??3@YAXPAX@Z
free
__CxxFrameHandler3
_except_handler4_common
atoi
memcpy
??0exception@std@@QAE@ABV01@@Z
??1exception@std@@UAE@XZ
memmove
swscanf
_encoded_null
__CppXcptFilter
wcsstr
_initterm
SHFileOperationW
Ord(680)
GetParent
EndDialog
DefWindowProcW
ShowWindow
SetDlgItemInt
SetWindowLongW
MessageBoxW
EnableWindow
DialogBoxParamW
SendDlgItemMessageW
IsWindowEnabled
GetSysColor
GetDlgItemInt
CheckDlgButton
CreateDialogParamW
SendMessageW
SetWindowTextW
GetDlgItem
IsWindow
CallWindowProcW
IsDlgButtonChecked
GetWindowTextW
SetDlgItemTextW
GetDesktopWindow
GetFocus
GetWindowLongW
DestroyWindow
Ord(76)
Ord(111)
Ord(105)
Ord(5)
Ord(68)
Ord(84)
Ord(97)
Ord(20)
Ord(64)
Ord(15)
Ord(112)
Ord(135)
Ord(82)
Ord(110)
Ord(122)
Ord(116)
Ord(66)
Ord(106)
Ord(57)
Ord(23)
Ord(108)
Ord(118)
Ord(8)
PE exports
Number of PE resources by type
RT_DIALOG 5
RT_ICON 4
RT_GROUP_ICON 4
RT_MANIFEST 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 9
RUSSIAN 5
NEUTRAL 1
PE resources
ExifTool file metadata
SubsystemVersion
5.1

LinkerVersion
10.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
0.0.1.1

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x0017

CharacterSet
Unicode

InitializedDataSize
31744

FileOS
Win32

MIMEType
application/octet-stream

LegalCopyright
2011 Mataes, 2007 ZERO_BiT

TimeStamp
2012:12:31 10:37:17+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
PackUpdater

FileAccessDate
2013:04:15 21:38:35+01:00

FileDescription
Simple updater for Miranda IM premodified packs.

OSVersion
5.1

FileCreateDate
2013:04:15 21:38:35+01:00

OriginalFilename
PackUpdater.dll

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CodeSize
23040

ProductName
PackUpdater

ProductVersionNumber
0.0.1.1

EntryPoint
0x1f58

ObjectFileType
Unknown

Compressed bundles
File identification
MD5 0fb3c30a4fdb174424ef196c6b903cc8
SHA1 806634bdbd644d431607ac14737029c93262f3d7
SHA256 e22531717adf3eb42f718f6ce071a5ade097540d0e7bd43cca928a0af4d20312
ssdeep
1536:7a+uT///GJwhmweU293cn7EX/SLoSqCeexppWOfYkDT0xz:7a+uT/XpmweU293cnYvSLoSqCeexppWT

File size 54.5 KB ( 55808 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID Miranda IM plugin (41.0%)
Windows Screen Saver (25.5%)
Win32 Dynamic Link Library (generic) (12.8%)
Win32 Executable (generic) (12.7%)
Generic Win/DOS Executable (3.9%)
Tags
pedll

VirusTotal metadata
First submission 2013-04-15 20:36:09 UTC ( 5 years, 8 months ago )
Last submission 2013-04-15 20:36:09 UTC ( 5 years, 8 months ago )
File names PackUpdater
packupdater.dll
PackUpdater.dll
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!