× ¡Las cookies están desactivadas! Esta página requiere que las cookies estén activadas para funcionar correctamente
SHA256: 0414d20d20e1bd7367161d90f803227711a04bb5cacfe2fd667b4ba6167a56d8
Nombre: lmbd.dll
Detecciones: 3 / 48
Fecha de análisis: 2013-09-18 06:58:53 UTC ( hace 4 años, 10 meses )
Antivirus Resultado Actualización
AVG Cryptic.ERA 20130918
ESET-NOD32 a variant of Win32/Kryptik.BJZM 20130917
VIPRE Trojan.Win32.Sinowal.baq (v) 20130918
Yandex 20130917
AhnLab-V3 20130917
AntiVir 20130918
Antiy-AVL 20130918
Avast 20130918
Baidu-International 20130917
BitDefender 20130918
Bkav 20130918
ByteHero 20130916
CAT-QuickHeal 20130917
ClamAV 20130917
Commtouch 20130918
Comodo 20130918
DrWeb 20130918
Emsisoft 20130918
F-Prot 20130918
F-Secure 20130918
Fortinet 20130918
GData 20130918
Ikarus 20130918
Jiangmin 20130903
K7AntiVirus 20130917
K7GW 20130917
Kaspersky 20130918
Kingsoft 20130829
Malwarebytes 20130918
McAfee 20130918
McAfee-GW-Edition 20130918
Microsoft 20130918
eScan 20130918
NANO-Antivirus 20130918
Norman 20130918
nProtect 20130917
Panda 20130917
PCTools 20130917
Rising 20130918
Sophos AV 20130918
SUPERAntiSpyware 20130918
Symantec 20130918
TheHacker 20130917
TotalDefense 20130917
TrendMicro 20130918
TrendMicro-HouseCall 20130918
VBA32 20130917
ViRobot 20130918
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2003-11-30 00:00:45
Entry Point 0x000011D0
Number of sections 4
PE sections
PE imports
CallNamedPipeW
GetSystemTime
SystemTimeToFileTime
BuildCommDCBAndTimeoutsA
CreateFileMappingA
lstrcmpiA
FreeEnvironmentStringsW
GetLargestConsoleWindowSize
VirtualProtect
GetEnvironmentVariableW
GetDriveTypeA
WaitNamedPipeA
lstrcpyA
GlobalGetAtomNameA
GetProcessWorkingSetSize
FindFirstFileW
ReadConsoleOutputCharacterA
OpenSemaphoreW
VirtualAlloc
FillConsoleOutputAttribute
FindVolumeMountPointClose
PE exports
Number of PE resources by type
RT_STRING 9
Number of PE resources by language
ENGLISH US 9
PE resources
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

TimeStamp
2003:11:30 01:00:45+01:00

FileType
Win32 DLL

PEType
PE32

CodeSize
50688

LinkerVersion
8.0

EntryPoint
0x11d0

InitializedDataSize
65536

SubsystemVersion
4.0

ImageVersion
0.0

OSVersion
4.0

UninitializedDataSize
0

File identification
MD5 001ba1467304ebb4374978fd939f073f
SHA1 6fe1b54230e9141c30ce5f2158e3f5c8c915a45b
SHA256 0414d20d20e1bd7367161d90f803227711a04bb5cacfe2fd667b4ba6167a56d8
ssdeep
1536:SAN4zMJjZj9dmzNyK/NlGe2KnzXIPAuVloSzp5D6Fy6//wL/tvvHm5tkVQ:PrG2KSNt2cP+tkVQ

Tamaño del fichero 86.5 KB ( 88576 bytes )
Tipo Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID Win32 Dynamic Link Library (generic) (43.5%)
Win32 Executable (generic) (29.8%)
Generic Win/DOS Executable (13.2%)
DOS Executable Generic (13.2%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
Tags
pedll

VirusTotal metadata
First submission 2013-09-18 06:58:53 UTC ( hace 4 años, 10 meses )
Last submission 2013-09-18 06:58:53 UTC ( hace 4 años, 10 meses )
Nombres lmbd.dll
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No hay comentarios. Ningún usuario ha comentado aún. ¡Sea el primero en hacerlo!

Deje su comentario...

?
Enviar comentario

No ha iniciado sesión. Solo los usuarios registrados pueden escribir comentarios.

No hay votos. Nadie ha votado aún. ¡Sea el primero!