× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: e8de44151f10b2639fa78c825ac3a55f632a99b684a6052383402a12c5142bc0
File name: Plugin1.dll
Detection ratio: 16 / 54
Analysis date: 2015-06-23 14:43:30 UTC ( 2 years, 5 months ago ) View latest
Antivirus Result Update
Ad-Aware Trojan.Generic.14643697 20150623
ALYac Trojan.Generic.14643697 20150623
Arcabit Trojan.Generic.DDF71F1 20150623
Avast Win64:Rovnix-I [Trj] 20150623
Avira (no cloud) TR/Dldr.Agent.209408.3 20150623
BitDefender Trojan.Generic.14643697 20150623
DrWeb DLOADER.Trojan 20150623
Emsisoft Trojan.Generic.14643697 (B) 20150623
ESET-NOD32 a variant of Win32/Rovnix.AH 20150623
F-Secure Trojan.Generic.14643697 20150623
GData Trojan.Generic.14643697 20150623
eScan Trojan.Generic.14643697 20150623
NANO-Antivirus Trojan.Win32.Agent.dtbmhk 20150622
nProtect Trojan.Generic.14643697 20150623
Qihoo-360 HEUR/QVM39.1.Malware.Gen 20150623
Symantec Suspicious.Cloud.5 20150623
AegisLab 20150623
Yandex 20150622
AhnLab-V3 20150623
Alibaba 20150623
Antiy-AVL 20150623
AVG 20150623
AVware 20150623
Baidu-International 20150623
Bkav 20150623
ByteHero 20150623
CAT-QuickHeal 20150623
ClamAV 20150623
Comodo 20150623
Cyren 20150623
F-Prot 20150623
Fortinet 20150623
Ikarus 20150623
Jiangmin 20150620
K7AntiVirus 20150623
K7GW 20150623
Kaspersky 20150623
Kingsoft 20150623
Malwarebytes 20150623
McAfee 20150623
McAfee-GW-Edition 20150623
Microsoft 20150623
Panda 20150622
Rising 20150618
SUPERAntiSpyware 20150623
Tencent 20150623
TheHacker 20150622
TrendMicro 20150623
TrendMicro-HouseCall 20150623
VBA32 20150622
VIPRE 20150623
ViRobot 20150623
Zillya 20150623
Zoner 20150623
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2015-04-23 05:10:32
Entry Point 0x0000BAE0
Number of sections 4
PE sections
PE exports
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

TimeStamp
2015:04:23 06:10:32+01:00

FileType
Win32 DLL

PEType
PE32

CodeSize
123392

LinkerVersion
11.0

FileTypeExtension
dll

InitializedDataSize
101376

SubsystemVersion
5.1

EntryPoint
0xbae0

OSVersion
5.1

ImageVersion
0.0

UninitializedDataSize
0

Compressed bundles
File identification
MD5 bb91c8c65b8c4664a8099e064535463c
SHA1 18cf1c8868aef3e49ccfbcf996bb023962cafab8
SHA256 e8de44151f10b2639fa78c825ac3a55f632a99b684a6052383402a12c5142bc0
ssdeep
6144:w2+oXF2cUVVHAc6Oht+uxPkaWJWTBsBN:w2+oXF2cUXHAc6Oht+kuJWTq

authentihash d56990a8dd9b7831a33f3302d281aa4dc639b057a274817f263181263ea4d802
File size 204.5 KB ( 209408 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID Win64 Executable (generic) (64.6%)
Win32 Dynamic Link Library (generic) (15.3%)
Win32 Executable (generic) (10.5%)
Generic Win/DOS Executable (4.6%)
DOS Executable Generic (4.6%)
Tags
pedll

VirusTotal metadata
First submission 2015-05-29 13:55:50 UTC ( 2 years, 6 months ago )
Last submission 2015-08-12 03:27:58 UTC ( 2 years, 3 months ago )
File names Plugin1.dll
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!