× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: bb96b2c7a3f778fef1c4d3cd5c9805ffc3c80c9853aefea00cabacd1f65ce298
File name: Table-Project-92.1.A.dll
Detection ratio: 0 / 47
Analysis date: 2013-06-23 11:48:45 UTC ( 5 år, 10 månader ago ) View latest
Antivirus Result Update
Yandex 20130622
AhnLab-V3 20130623
AntiVir 20130623
Antiy-AVL 20130623
Avast 20130623
AVG 20130623
BitDefender 20130623
ByteHero 20130613
CAT-QuickHeal 20130622
ClamAV 20130623
Commtouch 20130623
Comodo 20130623
DrWeb 20130623
Emsisoft 20130623
eSafe 20130620
ESET-NOD32 20130622
F-Prot 20130623
F-Secure 20130623
Fortinet 20130623
GData 20130623
Ikarus 20130623
Jiangmin 20130623
K7AntiVirus 20130621
K7GW 20130621
Kaspersky 20130623
Kingsoft 20130506
Malwarebytes 20130622
McAfee 20130623
McAfee-GW-Edition 20130623
Microsoft 20130623
eScan 20130623
NANO-Antivirus 20130623
Norman 20130623
nProtect 20130621
Panda 20130623
PCTools 20130521
Rising 20130621
Sophos AV 20130623
SUPERAntiSpyware 20130623
Symantec 20130623
TheHacker 20130622
TotalDefense 20130621
TrendMicro 20130623
TrendMicro-HouseCall 20130623
VBA32 20130621
VIPRE 20130623
ViRobot 20130622
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2013-06-23 11:32:42
Entry Point 0x00006944
Number of sections 5
PE sections
PE imports
GetCurrentProcess
TerminateProcess
SetUnhandledExceptionFilter
CreateThread
DecodePointer
GetCurrentProcessId
InterlockedExchange
QueryPerformanceCounter
UnhandledExceptionFilter
IsDebuggerPresent
Sleep
CloseHandle
GetSystemTimeAsFileTime
VirtualProtect
GetTickCount
GetCurrentThreadId
InterlockedCompareExchange
EncodePointer
IsBadReadPtr
_amsg_exit
_malloc_crt
__FrameUnwindFilter
_unlock
_crt_debugger_hook
_lock
__dllonexit
_onexit
_except_handler4_common
_encoded_null
free
_cexit
__CppXcptFilter
_initterm
_initterm_e
__clean_type_info_names_internal
ShellExecuteW
GetWindowThreadProcessId
MessageBoxW
SetParent
FindWindowW
MapVirtualKeyW
GetWindow
PostMessageW
SetWindowPos
_CorDllMain
Number of PE resources by type
RT_MANIFEST 1
Number of PE resources by language
ENGLISH US 1
PE resources
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

TimeStamp
2013:06:23 12:32:42+01:00

FileType
Win32 DLL

PEType
PE32

CodeSize
23552

LinkerVersion
10.0

EntryPoint
0x6944

InitializedDataSize
145408

SubsystemVersion
5.1

ImageVersion
0.0

OSVersion
5.1

UninitializedDataSize
0

File identification
MD5 c67465afbd2ca165c8ca92f6aade0f9d
SHA1 8bb2810c7c358643fa3f269b6da7a1fdecd746ac
SHA256 bb96b2c7a3f778fef1c4d3cd5c9805ffc3c80c9853aefea00cabacd1f65ce298
ssdeep
3072:6Ax8rzv36FaLlGy45albfleLgd6+OHSqZFLh0hnhky47a4Y0X7me/gs:eXW+65aRfleLgdi1FLh0hnhkyrJylgs

File size 166.0 kB ( 169984 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Win32 Executable MS Visual C++ (generic) (78.5%)
Win32 Executable (generic) (11.3%)
Generic Win/DOS Executable (5.0%)
DOS Executable Generic (5.0%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
Tags
assembly pedll

VirusTotal metadata
First submission 2013-06-23 11:48:45 UTC ( 5 år, 10 månader ago )
Last submission 2013-06-23 11:48:45 UTC ( 5 år, 10 månader ago )
File names Table-Project-92.1.A.dll
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!