× Les cookies sont désactivés ! Ce site exige que les cookies soient activés pour fonctionner correctement
SHA256: f707c30cf067354044c97f29a5ec6d499a586336de7d0579badedb62e89de79b
Nom du fichier : dbdata.dll
Ratio de détection : 24 / 69
Date d'analyse : 2018-12-30 10:07:56 UTC (il y a 2 mois, 3 semaines) Voir les derniers
Antivirus Résultat Mise à jour
AegisLab Trojan.Win32.Generic.4!c 20181230
ALYac Trojan.Generic.23246123 20181230
Antiy-AVL GrayWare/Win32.Generic 20181230
Arcabit Trojan.Generic.D162B52B 20181230
BitDefender Trojan.Generic.23246123 20181230
CAT-QuickHeal Trojan.Generic 20181229
CrowdStrike Falcon (ML) malicious_confidence_60% (D) 20181022
Cylance Unsafe 20181230
Cyren W64/Trojan.TYJQ-7683 20181230
Emsisoft Trojan.Generic.23246123 (B) 20181230
F-Secure Trojan.Generic.23246123 20181230
Fortinet W32/PossibleThreat 20181230
GData Trojan.Generic.23246123 20181230
Ikarus HackTool.Win32.CrackSearch 20181229
Jiangmin Trojan.Generic.cucuw 20181230
K7AntiVirus Riskware ( 0040eff71 ) 20181230
K7GW Riskware ( 0040eff71 ) 20181230
McAfee RDN/Generic.dx 20181230
McAfee-GW-Edition RDN/Generic.dx 20181230
Microsoft HackTool:Win32/CrackSearch 20181230
eScan Trojan.Generic.23246123 20181230
Rising Trojan.Generic!8.C3 (CLOUD) 20181230
TrendMicro-HouseCall TROJ_GEN.R002H06KN18 20181230
Webroot W32.Malware.Gen 20181230
Acronis 20181227
Ad-Aware 20181230
AhnLab-V3 20181229
Alibaba 20180921
Avast 20181230
Avast-Mobile 20181229
AVG 20181230
Avira (no cloud) 20181229
Babable 20180918
Baidu 20181207
Bkav 20181227
ClamAV 20181230
CMC 20181229
Comodo 20181230
Cybereason 20180308
DrWeb 20181230
eGambit 20181230
Endgame 20181108
ESET-NOD32 20181230
F-Prot 20181230
Sophos ML 20181128
Kaspersky 20181230
Kingsoft 20181230
Malwarebytes 20181230
MAX 20181230
NANO-Antivirus 20181230
Palo Alto Networks (Known Signatures) 20181230
Panda 20181229
Qihoo-360 20181230
SentinelOne (Static ML) 20181223
Sophos AV 20181230
SUPERAntiSpyware 20181226
Symantec 20181229
Symantec Mobile Insight 20181225
TACHYON 20181230
Tencent 20181230
TheHacker 20181230
Trapmine 20181205
TrendMicro 20181230
Trustlook 20181230
VBA32 20181229
VIPRE 20181230
ViRobot 20181230
Yandex 20181229
Zillya 20181228
ZoneAlarm by Check Point 20181230
Zoner 20181230
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows command line subsystem that targets 64bit architectures.
FileVersionInfo properties
PE header basic information
Target machine x64
Compilation timestamp 2018-11-07 16:12:05
Entry Point 0x00001400
Number of sections 12
PE sections
PE imports
GetLastError
HeapFree
EnterCriticalSection
lstrlenA
QueryPerformanceCounter
GetTickCount
VirtualProtect
RtlAddFunctionTable
DeleteCriticalSection
GetCurrentProcess
GetCurrentProcessId
RtlVirtualUnwind
UnhandledExceptionFilter
GetProcessHeap
GetModuleHandleA
SetUnhandledExceptionFilter
RtlLookupFunctionEntry
RtlCaptureContext
GetSystemTimeAsFileTime
TerminateProcess
InitializeCriticalSection
VirtualQuery
TlsGetValue
Sleep
HeapAlloc
GetCurrentThreadId
LeaveCriticalSection
_amsg_exit
strncmp
malloc
_lock
_unlock
fwrite
signal
__iob_func
__dllonexit
_onexit
abort
free
calloc
_initterm
strlen
memcpy
vfprintf
PE exports
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows command line

MachineType
AMD AMD64

FileTypeExtension
dll

TimeStamp
2018:11:07 17:12:05+01:00

FileType
Win64 DLL

PEType
PE32+

CodeSize
13824

LinkerVersion
2.23

ImageFileCharacteristics
Executable, No line numbers, No symbols, Large address aware, No debug, DLL

EntryPoint
0x1400

InitializedDataSize
8192

SubsystemVersion
5.2

ImageVersion
0.0

OSVersion
5.2

UninitializedDataSize
4096

File identification
MD5 86a4913bb768bbb95c5de62c91f657ed
SHA1 71ff99682055d53779e73657f2761088e00a5146
SHA256 f707c30cf067354044c97f29a5ec6d499a586336de7d0579badedb62e89de79b
ssdeep
384:SvA51IqVo6s+rhb+oHywDWOUHt4z8YhYkSNFpnbwaVOaVqy:S4DvovUbfSwHOo8WoIcOc

authentihash 6e8db53c258e4dada812c3e220cca185ba71dea1cd062eb88927c01f4e3beeb5
imphash 0be399c20c95a3d054249f460bd3e064
File size 26.5 KB ( 27136 bytes )
File type Win32 DLL
Magic literal
PE32+ executable for MS Windows (DLL) (console) Mono/.Net assembly

TrID Win64 Executable (generic) (82.0%)
OS/2 Executable (generic) (6.0%)
Generic Win/DOS Executable (5.9%)
DOS Executable Generic (5.9%)
VXD Driver (0.0%)
Tags
64bits assembly pedll

VirusTotal metadata
First submission 2018-11-10 21:52:09 UTC (il y a 4 mois, 1 semaine)
Last submission 2019-03-21 18:06:07 UTC (il y a 2 jours)
Noms du fichier dbdata.dll
dbdata.dll
dbdata.dll
dbdata.dll
dbdata.dll
dbdata.dll
dbdata.dll
dbdata - 복사본.dll
dbdata.dll
dbdata.dll
test.dll
5f93443f335912abf96c30e9219dfc1c.safe
DBDATA.DLL
5f93443f335912abf96c30e9219dfc1c.safe
Advanced heuristic and reputation engines
Aucun commentaire. Aucun membre de la communauté VirusTotal n'a encore commenté cet élément, soyez le premier à le faire !

Laissez votre commentaire...

?
Poster un commentaire

Vous n'êtes pas connecté. Seuls les utilisateurs enregistrés peuvent laisser des commentaires, connectez-vous pour commenter !

Aucun vote. Personne n'a encore voté pour cet élément, soyez le premier à le faire !