× Cookies被禁用! 本网站需要启用Cookie才能正常工作
SHA256: fe55ddfa28a910fd3a3ba4bd7ee28d6394b3d2b646635aa62e903c2c23938f04
文件名: 3411944027.exe
检出率: 39 / 71
分析日期: 2018-12-07 02:00:33 UTC ( 5 月, 2 周 前 ) 查看最新
反病毒软件 结果 病毒库日期
Ad-Aware Trojan.GenericKD.40813618 20181206
ALYac Trojan.GenericKD.40813618 20181206
Arcabit Trojan.Generic.D26EC432 20181206
AVG FileRepMalware 20181206
BitDefender Trojan.GenericKD.40813618 20181206
CrowdStrike Falcon (ML) malicious_confidence_90% (W) 20181022
Cybereason malicious.bc4347 20180225
Cylance Unsafe 20181207
Emsisoft Trojan.GenericKD.40813618 (B) 20181206
Endgame malicious (high confidence) 20181108
ESET-NOD32 a variant of Win32/Injector.ECBP 20181207
F-Secure Trojan.GenericKD.40813618 20181206
Fortinet W32/Injector.ECBP!tr 20181206
GData Trojan.GenericKD.40813618 20181206
Ikarus Trojan.Win32.Injector 20181206
Sophos ML heuristic 20181128
K7AntiVirus Trojan ( 00542d391 ) 20181207
K7GW Trojan ( 00542d391 ) 20181207
Kaspersky Backdoor.Win32.Dridex.all 20181207
MAX malware (ai score=81) 20181207
McAfee RDN/Generic.grp 20181207
McAfee-GW-Edition RDN/Generic.grp 20181207
Microsoft Trojan:Win32/Occamy.C 20181207
eScan Trojan.GenericKD.40813618 20181207
NANO-Antivirus Trojan.Win32.Dridex.fkwhpf 20181207
Palo Alto Networks (Known Signatures) generic.ml 20181207
Panda Trj/GdSda.A 20181206
Qihoo-360 Win32/Backdoor.b75 20181207
Rising Malware.Heuristic!ET#88% (RDM+:cmRtazqJodcbyRz7hqb5ouMyZxQ0) 20181207
SentinelOne (Static ML) static engine - malicious 20181011
Sophos AV Mal/Generic-S 20181207
Symantec Trojan.Gen.2 20181207
Tencent Win32.Backdoor.Dridex.Isq 20181207
Trapmine malicious.high.ml.score 20181205
TrendMicro TROJ_GEN.R002C0PL618 20181207
VBA32 BScope.Backdoor.Dridex 20181206
VIPRE Trojan.Win32.Generic!BT 20181206
Webroot W32.Trojan.Gen 20181207
ZoneAlarm by Check Point Backdoor.Win32.Dridex.all 20181206
AegisLab 20181206
AhnLab-V3 20181206
Alibaba 20180921
Antiy-AVL 20181205
Avast 20181206
Avast-Mobile 20181206
Avira (no cloud) 20181206
AVware 20180925
Babable 20180918
Baidu 20181206
Bkav 20181206
CAT-QuickHeal 20181206
ClamAV 20181206
CMC 20181206
Comodo 20181206
Cyren 20181206
DrWeb 20181206
eGambit 20181207
F-Prot 20181206
Jiangmin 20181206
Kingsoft 20181207
Malwarebytes 20181207
SUPERAntiSpyware 20181205
Symantec Mobile Insight 20181204
TACHYON 20181207
TheHacker 20181202
TotalDefense 20181206
TrendMicro-HouseCall 20181206
Trustlook 20181207
ViRobot 20181206
Yandex 20181204
Zillya 20181206
Zoner 20181206
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 3Dfx Interactive, Inc. 1997

Product Voodoo2® DirectX for Windows® 95
Original name 3dfx32v2.dll
Internal name 3dfx32v2.dll
File version 4.10.01.0094-2.16
Description 3Dfx Interactive, Inc. DirectX Driver
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 1998-04-04 16:30:52
Entry Point 0x0000464E
Number of sections 5
PE sections
PE imports
RegRestoreKeyW
CreatePatternBrush
GetICMProfileA
SetArcDirection
GetStdHandle
GetConsoleOutputCP
DeactivateActCtx
HeapDestroy
VerifyVersionInfoW
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
GetLocaleInfoA
LocalAlloc
ExitProcess
FreeEnvironmentStringsW
GetLocaleInfoW
SetStdHandle
GetCPInfo
GetStringTypeA
InterlockedExchange
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
FreeLibrary
LocalFree
InitializeCriticalSection
InterlockedDecrement
OutputDebugStringA
SetLastError
DeleteTimerQueueEx
GetVersionExA
GetModuleFileNameA
EnumSystemLocalesA
LoadLibraryExA
SetConsoleCtrlHandler
UnhandledExceptionFilter
TlsGetValue
MultiByteToWideChar
FatalAppExitA
SetFilePointer
SetNamedPipeHandleState
SetUnhandledExceptionFilter
SetEnvironmentVariableA
TerminateProcess
WriteConsoleA
VirtualQuery
GetCurrentThreadId
LeaveCriticalSection
WriteConsoleW
HeapFree
EnterCriticalSection
SetHandleCount
GetOEMCP
QueryPerformanceCounter
GetTickCount
TlsAlloc
VirtualProtect
FlushFileBuffers
LoadLibraryA
RtlUnwind
GetStartupInfoA
GetDateFormatA
GetUserDefaultLCID
CompareStringW
GetTimeFormatA
IsValidLocale
GetProcAddress
GetTimeZoneInformation
GetFileType
TlsSetValue
CreateFileA
HeapAlloc
InterlockedIncrement
BuildCommDCBA
GetLastError
LCMapStringW
GetSystemInfo
GetConsoleCP
LCMapStringA
GetEnvironmentStringsW
GetEnvironmentStrings
GetCurrentProcessId
WideCharToMultiByte
GetCommandLineA
GetCurrentThread
RaiseException
TlsFree
GetModuleHandleA
CloseHandle
GetACP
GetModuleHandleW
IsValidCodePage
HeapCreate
VirtualFree
Sleep
VirtualAlloc
CompareStringA
LZInit
LHashValOfNameSysA
SafeArrayLock
I_RpcServerCheckClientRestriction
SetupAddToSourceListW
CompleteAuthToken
CoDosDateTimeToFileTime
CoTreatAsClass
Number of PE resources by type
RT_VERSION 1
Number of PE resources by language
ENGLISH US 1
PE resources
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
4.2

ImageVersion
0.0

FileSubtype
8

FileVersionNumber
4.10.1.94

LanguageCode
English (U.S.)

FileFlagsMask
0x30003f

FileDescription
3Dfx Interactive, Inc. DirectX Driver

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Windows, Latin1

InitializedDataSize
98304

EntryPoint
0x464e

OriginalFileName
3dfx32v2.dll

MIMEType
application/octet-stream

LegalCopyright
Copyright 3Dfx Interactive, Inc. 1997

FileVersion
4.10.01.0094-2.16

TimeStamp
1998:04:04 17:30:52+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
3dfx32v2.dll

ProductVersion
4.10.01.0094-2.16

SubsystemVersion
5.0

OSVersion
5.0

FileOS
Windows 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
3Dfx Interactive, Inc.

CodeSize
182272

ProductName
Voodoo2 DirectX for Windows 95

ProductVersionNumber
4.10.1.94

FileTypeExtension
exe

ObjectFileType
Driver

File identification
MD5 0ad4314bc4347dd6bd8e3d170a0f2cb9
SHA1 708e8aea1db4830e1c6f1a4f7d01e7d0dd8f6bfc
SHA256 fe55ddfa28a910fd3a3ba4bd7ee28d6394b3d2b646635aa62e903c2c23938f04
ssdeep
6144:2ne6CoxUzenZ4Umk3/h+GceGyZub2O0a87ZQYtvq0jV0vV47wmFJH:3eGyZub7s7Z/tivmFJH

authentihash 4245ab3d08fb4f70628a4f418ba2756f96a88b3cdf1e9284398165406b9b217f
imphash 3625240823b9c5defaf00dcdf2fe8f00
File size 232.0 KB ( 237568 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (64.5%)
Win32 Dynamic Link Library (generic) (13.6%)
Win32 Executable (generic) (9.3%)
OS/2 Executable (generic) (4.1%)
Generic Win/DOS Executable (4.1%)
Tags
peexe

VirusTotal metadata
First submission 2018-12-04 13:22:48 UTC ( 5 月, 2 周 前 )
Last submission 2018-12-04 13:22:48 UTC ( 5 月, 2 周 前 )
文件名 3411944027.exe
3dfx32v2.dll
没有评论. 没有VirusTotal社区成员评论该项目,抢沙发!

发表评论

?
发表评论

您没有登录。只有注册用户可以发表评论,请登录后发表评论!

没有投票. 目前没有用户投票。
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Created processes
Opened mutexes
Runtime DLLs