× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: fd768e94ba1666f42b4df65540bb4b28c51037ab2c42f40284a64d2c3cf69478
File name: Rak3cpl
Detection ratio: 0 / 67
Analysis date: 2018-07-26 20:04:46 UTC ( 8 months, 4 weeks ago )
Antivirus Result Update
Ad-Aware 20180726
AegisLab 20180726
AhnLab-V3 20180726
Alibaba 20180713
ALYac 20180726
Antiy-AVL 20180726
Arcabit 20180726
Avast 20180726
Avast-Mobile 20180726
AVG 20180726
Avira (no cloud) 20180726
AVware 20180726
Babable 20180725
Baidu 20180726
BitDefender 20180726
Bkav 20180726
CAT-QuickHeal 20180725
ClamAV 20180726
CMC 20180726
Comodo 20180726
CrowdStrike Falcon (ML) 20180723
Cybereason 20180308
Cylance 20180726
Cyren 20180726
DrWeb 20180726
eGambit 20180726
Emsisoft 20180726
Endgame 20180711
ESET-NOD32 20180726
F-Prot 20180726
F-Secure 20180726
Fortinet 20180726
GData 20180726
Ikarus 20180726
Sophos ML 20180717
Jiangmin 20180726
K7AntiVirus 20180726
K7GW 20180726
Kaspersky 20180726
Kingsoft 20180726
Malwarebytes 20180726
MAX 20180726
McAfee 20180726
McAfee-GW-Edition 20180726
Microsoft 20180726
eScan 20180726
NANO-Antivirus 20180726
Palo Alto Networks (Known Signatures) 20180726
Panda 20180726
Qihoo-360 20180726
Rising 20180726
SentinelOne (Static ML) 20180701
Sophos AV 20180726
SUPERAntiSpyware 20180726
Symantec 20180726
TACHYON 20180726
Tencent 20180726
TheHacker 20180726
TotalDefense 20180726
TrendMicro 20180726
TrendMicro-HouseCall 20180726
Trustlook 20180726
VBA32 20180726
VIPRE 20180726
ViRobot 20180726
Webroot 20180726
Yandex 20180725
Zillya 20180726
ZoneAlarm by Check Point 20180726
Zoner 20180726
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (c) 2000, Silitek Corp.

Product Rapid Access Keyboard III
Original name Rak3cpl.cpl
Internal name Rak3cpl
File version 1, 0, 2, 0
Description Control Panel Applet for Rapid Access Keyboard
Packers identified
PEiD Armadillo v1.xx - v2.xx
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2001-04-27 23:55:34
Entry Point 0x00001271
Number of sections 5
PE sections
PE imports
HeapFree
GetStdHandle
EnterCriticalSection
LCMapStringW
SetHandleCount
LoadLibraryA
GetOEMCP
LCMapStringA
HeapDestroy
ExitProcess
TlsAlloc
GetEnvironmentStringsW
GetModuleFileNameA
RtlUnwind
GetACP
FreeEnvironmentStringsA
DeleteCriticalSection
GetStartupInfoA
GetEnvironmentStrings
lstrcatA
GetCPInfo
MultiByteToWideChar
FreeEnvironmentStringsW
GetCommandLineA
GetProcAddress
GetStringTypeA
WideCharToMultiByte
TlsFree
lstrcpyA
GetCurrentProcess
GetSystemDirectoryA
HeapReAlloc
GetStringTypeW
GetVersion
TerminateProcess
CreateProcessA
InitializeCriticalSection
HeapCreate
WriteFile
VirtualFree
TlsGetValue
GetFileType
TlsSetValue
HeapAlloc
GetCurrentThreadId
VirtualAlloc
LeaveCriticalSection
LoadIconA
LoadStringA
PE exports
Number of PE resources by type
RT_STRING 14
RT_ICON 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 4
SWEDISH 1
DANISH DEFAULT 1
NORWEGIAN BOKMAL 1
FINNISH DEFAULT 1
GERMAN 1
CHINESE TRADITIONAL 1
FRENCH 1
CHINESE SIMPLIFIED 1
PORTUGUESE BRAZILIAN 1
JAPANESE DEFAULT 1
DUTCH 1
SPANISH MEXICAN 1
ITALIAN 1
PE resources
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
6.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.0.2.0

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
20480

EntryPoint
0x1271

OriginalFileName
Rak3cpl.cpl

MIMEType
application/octet-stream

LegalCopyright
Copyright (c) 2000, Silitek Corp.

FileVersion
1, 0, 2, 0

TimeStamp
2001:04:28 00:55:34+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
Rak3cpl

ProductVersion
1, 0, 0, 0

FileDescription
Control Panel Applet for Rapid Access Keyboard

OSVersion
4.0

FileOS
Windows NT 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Silitek Corp.

CodeSize
12288

ProductName
Rapid Access Keyboard III

ProductVersionNumber
1.0.0.0

FileTypeExtension
dll

ObjectFileType
Dynamic link library

File identification
MD5 10b49b255ce2fe930a7a8d21cd6ddd33
SHA1 2f097645555670c11809018dac8028d23865d439
SHA256 fd768e94ba1666f42b4df65540bb4b28c51037ab2c42f40284a64d2c3cf69478
ssdeep
384:Wj3yVyVD3dTLJv0THXKpmlHZfabUNqyOoIo9ve9Re4HN:8f3dTL5cH6q4aT7Io9v+

authentihash dd5002376ef76f593d3cf18a10ad934ae3be9a2b52ea67dd86446e5ff27505bb
imphash 90a0d910b7a3e8f52552211bb023b027
File size 36.0 KB ( 36864 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (34.1%)
Win64 Executable (generic) (30.1%)
Win 9x/ME Control Panel applet (16.9%)
Win32 Dynamic Link Library (generic) (7.1%)
Win32 Executable (generic) (4.9%)
Tags
armadillo pedll

VirusTotal metadata
First submission 2018-07-01 13:36:28 UTC ( 9 months, 3 weeks ago )
Last submission 2018-07-01 13:36:28 UTC ( 9 months, 3 weeks ago )
File names Rak3cpl.cpl
Rak3cpl
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!