× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 76438fc9c86c57bf0fb8028a3a6290cfce8b305e21fca5ae15feaf2e73681a27
File name: ceTRNRnqgD3.dll
Detection ratio: 7 / 57
Analysis date: 2016-09-12 15:35:38 UTC ( 11 months, 1 week ago ) View latest
Antivirus Result Update
Bkav HW32.Packed.AB58 20160912
CrowdStrike Falcon (ML) malicious_confidence_100% (D) 20160725
Sophos ML trojan.win32.skeeyah.a!rfn 20160912
McAfee-GW-Edition BehavesLike.Win32.Ramnit.cc 20160911
Rising Malware.Generic!4ISnBIWlqyQ@6 (thunder) 20160912
Symantec Heur.AdvML.B 20160912
Tencent Win32.Trojan.Raas.Auto 20160912
Ad-Aware 20160912
AegisLab 20160912
AhnLab-V3 20160912
Alibaba 20160912
ALYac 20160912
Antiy-AVL 20160912
Arcabit 20160912
Avast 20160912
AVG 20160912
Avira (no cloud) 20160912
AVware 20160912
Baidu 20160912
BitDefender 20160912
CAT-QuickHeal 20160912
ClamAV 20160912
CMC 20160912
Comodo 20160912
Cyren 20160912
DrWeb 20160912
Emsisoft 20160912
ESET-NOD32 20160912
F-Prot 20160912
F-Secure 20160912
Fortinet 20160912
GData 20160912
Ikarus 20160912
Jiangmin 20160912
K7AntiVirus 20160912
K7GW 20160912
Kaspersky 20160912
Kingsoft 20160912
Malwarebytes 20160912
McAfee 20160912
Microsoft 20160912
eScan 20160912
NANO-Antivirus 20160912
nProtect 20160912
Panda 20160912
Qihoo-360 20160912
Sophos AV 20160912
SUPERAntiSpyware 20160912
TheHacker 20160911
TrendMicro 20160912
TrendMicro-HouseCall 20160912
VBA32 20160912
VIPRE 20160912
ViRobot 20160912
Yandex 20160911
Zillya 20160911
Zoner 20160912
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
© WelltonWay. All rights reserved.

Product PVRX2
Original name PVRX2.exe
Internal name PVRX2.exe
File version 1.0.0.0
Description PVRX2
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-09-12 12:34:35
Entry Point 0x00009509
Number of sections 7
PE sections
Overlays
MD5 dcb492f4e2e00ce230ec955398f7d20c
File type data
Offset 130560
Size 4219
Entropy 7.95
PE imports
CryptDestroyKey
RegCreateKeyExW
RegCloseKey
RegDeleteKeyW
RegQueryValueExA
RegCreateKeyW
CryptReleaseContext
LookupPrivilegeValueW
RegEnumKeyW
RegRestoreKeyW
CryptHashData
RegQueryValueExW
CryptCreateHash
OpenProcessToken
RegOpenKeyExW
RegOpenKeyW
RegOpenKeyExA
RegQueryValueW
CryptVerifySignatureW
RegQueryInfoKeyW
RegEnumKeyExW
OpenThreadToken
GetUserNameA
CryptDestroyHash
CryptAcquireContextW
CryptGetUserKey
RegDeleteValueW
RegSetValueExW
GetSaveFileNameW
GetFileTitleW
CommDlgExtendedError
SetGraphicsMode
Polygon
TextOutW
CreateFontIndirectW
GetGlyphOutlineW
CreatePen
SaveDC
GdiFlush
GetTextMetricsA
CombineRgn
GetClipBox
ExtTextOutW
ModifyWorldTransform
GetPixel
Rectangle
SetMapMode
GetBrushOrgEx
OffsetViewportOrgEx
DeleteDC
RestoreDC
SetBkMode
GetCharacterPlacementW
CreateBitmap
SetWorldTransform
DeleteObject
GetObjectW
CreateDCW
CreateDIBSection
RealizePalette
SetTextColor
CreatePatternBrush
GetDeviceCaps
GetClipRgn
BitBlt
GetOutlineTextMetricsA
GetTextExtentPoint32W
RectVisible
CreatePalette
GetStockObject
EnumFontFamiliesExW
SelectPalette
GetFontData
PtVisible
GetDIBits
ExtCreateRegion
SetTextAlign
ScaleViewportExtEx
SelectClipRgn
CreateCompatibleDC
CreateFontW
Escape
ScaleWindowExtEx
SetBrushOrgEx
CreateRectRgn
SelectObject
SetPolyFillMode
Ellipse
SetWindowExtEx
CreateSolidBrush
SetViewportExtEx
SetViewportOrgEx
SetPixelV
SetBkColor
GetBkColor
CreateCompatibleBitmap
ImmReleaseContext
ImmGetContext
GetStdHandle
GetDriveTypeW
GetConsoleOutputCP
ReleaseMutex
FileTimeToSystemTime
WaitForSingleObject
GetDriveTypeA
HeapDestroy
GetDateFormatA
GetFileAttributesW
DuplicateHandle
GetLocalTime
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
LocalAlloc
SetErrorMode
GetLogicalDrives
FreeEnvironmentStringsW
CheckNameLegalDOS8Dot3A
GetLocaleInfoW
EnumResourceLanguagesW
GetFileTime
GetCPInfo
GetStringTypeA
InterlockedExchange
GetProfileIntW
GetSystemTimeAsFileTime
GlobalMemoryStatusEx
HeapReAlloc
GetStringTypeW
FreeLibrary
LocalFree
FormatMessageW
GetExitCodeProcess
GetTimeZoneInformation
LoadResource
GlobalHandle
OutputDebugStringW
FindClose
TlsGetValue
FormatMessageA
GetFullPathNameW
WritePrivateProfileStringW
SetLastError
GetUserDefaultUILanguage
GetSystemTime
DeviceIoControl
InitializeCriticalSection
LocalLock
FindAtomA
RemoveDirectoryW
GlobalFindAtomA
HeapAlloc
GetModuleFileNameA
GetConsoleFontSize
SetProcessWorkingSetSize
OpenWaitableTimerA
ActivateActCtx
GetVolumeInformationW
InterlockedDecrement
MultiByteToWideChar
SetFilePointerEx
GetSystemPowerStatus
MoveFileW
GetModuleHandleA
GlobalAddAtomW
CreateThread
CreatePipe
GetExitCodeThread
CreateSemaphoreW
ConvertDefaultLocale
CreateMutexW
MulDiv
GetFileInformationByHandle
ExitThread
WriteConsoleA
SetCurrentDirectoryW
VirtualQuery
CopyFileW
LocalFileTimeToFileTime
GetDiskFreeSpaceExW
SetEndOfFile
GetVersion
InterlockedIncrement
WriteConsoleW
AreFileApisANSI
HeapFree
EnterCriticalSection
SetHandleCount
LoadLibraryW
GetVersionExW
GetOEMCP
QueryPerformanceCounter
GetTickCount
TlsAlloc
GetVersionExA
RtlUnwind
GlobalFindAtomW
GetStartupInfoA
UnlockFile
GetFileSize
LCMapStringW
OpenProcess
GetPrivateProfileIntA
GetDateFormatW
GetStartupInfoW
CreateDirectoryW
DeleteFileW
GetProcAddress
AddAtomW
GetProcessHeap
GetTempFileNameW
CreateFileMappingW
CompareStringW
GetFileSizeEx
GetModuleFileNameW
ExpandEnvironmentStringsW
lstrcmpA
FindNextFileW
CompareStringA
GetComputerNameA
FindFirstFileW
lstrcmpW
SetEvent
CreateEventW
CreateFileW
VirtualProtectEx
GetFileType
TlsSetValue
CreateFileA
ExitProcess
LeaveCriticalSection
GlobalGetAtomNameW
SystemTimeToFileTime
GlobalDeleteAtom
HeapCreate
GetSystemInfo
lstrlenA
GetConsoleCP
GetThreadLocale
GetEnvironmentStringsW
LockFile
FileTimeToLocalFileTime
SizeofResource
GetCurrentDirectoryW
GetCurrentProcessId
LockResource
SetFileTime
GetCommandLineW
GetCurrentDirectoryA
HeapSize
GetCommandLineA
GetCurrentThread
ReleaseSemaphore
MapViewOfFile
TlsFree
SetFilePointer
ReadFile
GlobalFlags
CloseHandle
GetACP
GetCurrentThreadId
FreeResource
GetFileAttributesExW
SetStdHandle
GetEnvironmentStrings
WideCharToMultiByte
UnmapViewOfFile
FindResourceW
VirtualFree
Sleep
VirtualAlloc
GetTimeFormatA
LoadRegTypeLib
VariantChangeType
SafeArrayGetDim
SafeArrayGetLBound
SysStringLen
UnRegisterTypeLib
RegisterTypeLib
SafeArrayGetElement
SystemTimeToVariantTime
VariantClear
SysAllocString
SafeArrayDestroy
SafeArrayGetUBound
SafeArrayGetVartype
VariantTimeToSystemTime
LoadTypeLib
SysFreeString
SafeArrayCopy
VariantInit
VarUI4FromStr
EnumProcesses
EnumProcessModules
GetModuleBaseNameW
SHGetFolderLocation
SHQueryRecycleBinW
SHEmptyRecycleBinW
SHCreateDirectoryExW
SHBrowseForFolderW
DragQueryFileW
SHFileOperationW
Shell_NotifyIconW
SHGetPathFromIDListW
ExtractIconExW
SHGetDesktopFolder
SHGetMalloc
CommandLineToArgvW
DragFinish
PathFindFileNameW
SHCopyKeyW
PathIsUNCW
StrCatW
PathFindExtensionW
PathStripToRootW
PathMakeSystemFolderW
PathUnmakeSystemFolderW
RedrawWindow
GetForegroundWindow
RegisterWindowMessageW
UnregisterHotKey
SetMenuItemBitmaps
LoadBitmapW
MoveWindow
DestroyMenu
PostQuitMessage
GetMessagePos
SetWindowPos
IsWindow
GrayStringW
EndPaint
EndDialog
WindowFromPoint
GetMessageTime
SetMenuItemInfoW
SetActiveWindow
GetDC
GetAsyncKeyState
ReleaseDC
GetDlgCtrlID
SendMessageW
UnregisterClassA
IsDialogMessageW
GetMenuStringW
SendMessageA
UnregisterClassW
GetClientRect
SetCaretPos
AllowSetForegroundWindow
DrawTextW
GetNextDlgTabItem
InSendMessage
CallNextHookEx
ClientToScreen
GetTopWindow
RegisterHotKey
OpenClipboard
GetWindowTextW
EnumClipboardFormats
GetWindowTextLengthW
LoadAcceleratorsW
GetActiveWindow
PtInRect
DrawEdge
GetParent
UpdateWindow
GetPropW
EqualRect
GetMenuState
CreateCaret
MapVirtualKeyExW
GetMessageW
ShowWindow
GetCaretPos
DrawFrameControl
SetPropW
PostThreadMessageW
PeekMessageW
SetWindowsHookExW
EnableWindow
CharUpperW
LoadIconW
TranslateMessage
IsWindowEnabled
GetWindow
DestroyCaret
SetClipboardData
GetIconInfo
MsgWaitForMultipleObjects
SetParent
RegisterClassW
GetWindowPlacement
LoadStringW
SetWindowLongW
IsIconic
TrackPopupMenuEx
GetSubMenu
SetTimer
ShowOwnedPopups
FillRect
CopyRect
DeferWindowPos
GetDialogBaseUnits
CreateWindowExW
RemovePropW
GetWindowLongW
GetCursorPos
CharNextW
DragDetect
MapWindowPoints
VkKeyScanExW
GetMonitorInfoW
BeginPaint
OffsetRect
DefWindowProcW
DrawIcon
KillTimer
TrackMouseEvent
GetComboBoxInfo
CharPrevW
GetClipboardData
GetClassInfoExW
SendDlgItemMessageA
GetSystemMetrics
EnableMenuItem
GetWindowRect
InflateRect
SetCapture
ReleaseCapture
IntersectRect
CharLowerW
SendDlgItemMessageW
PostMessageW
InvalidateRect
CheckDlgButton
CreatePopupMenu
CheckMenuItem
DrawFocusRect
GetClassLongW
GetLastActivePopup
SetWindowTextW
GetDlgItem
GetMenuCheckMarkDimensions
BringWindowToTop
ScreenToClient
TrackPopupMenu
DialogBoxIndirectParamW
GetMenuItemCount
GetDesktopWindow
GetKeyboardLayout
LoadCursorW
GetSystemMenu
ReuseDDElParam
GetMenuItemID
InsertMenuW
SetForegroundWindow
SetFocus
GetMenuItemInfoW
EmptyClipboard
GetCaretBlinkTime
CreateDialogIndirectParamW
DrawTextExW
SetLayeredWindowAttributes
GetScrollInfo
ModifyMenuW
FindWindowW
GetCapture
MessageBeep
LoadMenuW
RemoveMenu
GetWindowThreadProcessId
GetSysColorBrush
BeginDeferWindowPos
MessageBoxW
GetMenu
RegisterClassExW
SetMenu
SetRectEmpty
AppendMenuW
GetWindowDC
AdjustWindowRectEx
GetSysColor
RegisterClipboardFormatW
GetKeyState
EndDeferWindowPos
SystemParametersInfoA
UpdateLayeredWindow
GetDoubleClickTime
TabbedTextOutW
DestroyIcon
EnumDisplayMonitors
IsWindowVisible
WinHelpW
UnpackDDElParam
SystemParametersInfoW
DispatchMessageW
FrameRect
SetRect
DeleteMenu
MonitorFromRect
CallWindowProcW
GetClassNameW
DestroyWindow
GetClassInfoW
ValidateRect
IsRectEmpty
GetFocus
InsertMenuItemW
CloseClipboard
TranslateAcceleratorW
UnhookWindowsHookEx
SetCursor
InternetTimeFromSystemTimeW
HttpQueryInfoW
InternetOpenW
InternetConnectW
InternetReadFile
InternetCloseHandle
InternetSetOptionW
HttpSendRequestW
InternetErrorDlg
InternetTimeToSystemTimeW
InternetGetConnectedState
InternetGetLastResponseInfoW
HttpOpenRequestW
HttpAddRequestHeadersW
mixerGetLineControlsW
mixerGetControlDetailsW
mciGetErrorStringW
mixerOpen
mixerSetControlDetails
mciSendCommandW
mixerClose
mixerGetDevCapsW
mixerGetLineInfoW
GdipDrawImageRectRect
GdipGetFontStyle
GdipDrawRectangleI
GdipSetClipRect
GdipSaveGraphics
GdipGetGenericFontFamilySansSerif
GdipTranslateMatrix
GdipSetPenBrushFill
GdipCreateBitmapFromScan0
GdipGetImageVerticalResolution
GdipDisposeImage
GdipImageSelectActiveFrame
GdipGetFamilyName
GdipGetFontSize
GdipGetCompositingMode
GdipGetTextRenderingHint
GdipGetCellAscent
GdipGetClipBounds
GdipSetStringFormatAlign
GdipImageGetFrameCount
GdipGetImageWidth
GdipDrawImageI
GdipDrawImageRectRectI
GdipCreateFont
GdipCloneBrush
GdipCloneStringFormat
GdipCreateLineBrushFromRectWithAngleI
GdipFree
GdipGetImageRawFormat
GdipGetImageHeight
GdipDeleteStringFormat
GdipTranslateWorldTransform
GdipSetPenDashStyle
GdipSetTextRenderingHint
GdipCreateBitmapFromHICON
GdipGetImageHorizontalResolution
GdipSetImageAttributesColorMatrix
GdipSaveImageToFile
GdipMeasureString
GdipTransformMatrixPoints
GdipBitmapSetResolution
GdiplusStartup
GdipGetFamily
GdipFillPath
GdipCreateBitmapFromStream
GdipGetImageThumbnail
GdipGetImageEncoders
GdipFillRectangleI
GdipDisposeImageAttributes
GdipSetCompositingMode
GdipClosePathFigure
GdipCreateMatrix
GdipDrawLine
GdipRotateMatrix
GdipGetImageGraphicsContext
GdipRestoreGraphics
GdipGetImageEncodersSize
GdipBitmapLockBits
GdipClonePen
GdipGetCellDescent
GdipStringFormatGetGenericDefault
GdipDrawPath
GdipDeleteFontFamily
GdipCloneFontFamily
GdipCreatePath
GdipBitmapUnlockBits
GdipFillRectangle
GdipDeleteFont
GdipSetPixelOffsetMode
GdipGetPropertyItem
GdipGetPropertyItemSize
GdipDrawLineI
GdipBitmapGetPixel
GdipCreateFontFamilyFromName
GdipSetStringFormatFlags
GdipDeleteBrush
GdipRotateWorldTransform
GdipInvertMatrix
GdipAddPathArcI
GdipSetMatrixElements
GdipSetClipRectI
GdipStringFormatGetGenericTypographic
GdipGetStringFormatFlags
GdipGetClipBoundsI
GdipGetImagePixelFormat
GdipCreateSolidFill
GdipSetSmoothingMode
GdipSetStringFormatTrimming
GdipGetEmHeight
GdipGetDC
GdipDeleteMatrix
GdipGetLineSpacing
GdipDeleteGraphics
GdipTransformPath
GdipCreateImageAttributes
GdipCreateFromHDC
GdipCreatePen1
GdipDrawRectangle
GdipAlloc
GdipDeletePath
GdipDeletePen
GdipSetInterpolationMode
GdipDrawString
GdipCloneImage
GdipReleaseDC
_exit
isalpha
_CIcos
_wtoi
CreateStreamOnHGlobal
OleLockRunning
CoUninitialize
CoInitialize
CoTaskMemAlloc
CoRevokeClassObject
CoCreateInstance
OleSetContainedObject
CoTaskMemRealloc
CLSIDFromProgID
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
CoRegisterClassObject
CoCreateInstanceEx
CoCreateGuid
CoTaskMemFree
CLSIDFromString
StringFromGUID2
OleInitialize
OleUIBusyW
SnmpUtilOidCpy
SnmpUtilOidNCmp
SnmpUtilVarBindFree
CreateURLMonikerEx
PE exports
Number of PE resources by type
RT_VERSION 1
Number of PE resources by language
ENGLISH US 1
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
4.1

InitializedDataSize
134656

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.0.0.0

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x0000

CharacterSet
Unicode

LinkerVersion
4.0

EntryPoint
0x9509

OriginalFileName
PVRX2.exe

MIMEType
application/octet-stream

LegalCopyright
WelltonWay. All rights reserved.

FileVersion
1.0.0.0

TimeStamp
2016:09:12 13:34:35+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
PVRX2.exe

ProductVersion
1.0.0.0

FileDescription
PVRX2

OSVersion
4.1

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
WelltonWay

CodeSize
68608

ProductName
PVRX2

ProductVersionNumber
1.0.0.0

FileTypeExtension
dll

ObjectFileType
Executable application

AssemblyVersion
1.0.0.0

File identification
MD5 1906b171a386a1a9db87ea6ac002ff52
SHA1 b38b090ea92aedbc1702c1ae247b465214ebaa54
SHA256 76438fc9c86c57bf0fb8028a3a6290cfce8b305e21fca5ae15feaf2e73681a27
ssdeep
3072:W16ECRO4Qn2ru7O54uS0uIJSXb+0K3GFVvuS+I5Hqgii0:Iz462POv0uIJTGb4i0

authentihash 66e374e6886c623ea41690a453cd7c8cc7a7af5bb0af0aa9751a3b7f81dbe564
imphash 01205d91155a6e3272718f488540b362
File size 131.6 KB ( 134779 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID InstallShield setup (38.9%)
Win32 Executable MS Visual C++ (generic) (28.2%)
Win64 Executable (generic) (25.0%)
Win32 Executable (generic) (4.0%)
Generic Win/DOS Executable (1.8%)
Tags
pedll overlay

VirusTotal metadata
First submission 2016-09-12 14:15:21 UTC ( 11 months, 1 week ago )
Last submission 2016-09-24 02:35:18 UTC ( 11 months ago )
File names INjHTZ7Y44dVC.dll
mlwJumkB4G
ceTRNRnqgD3.dll
8WfaOoolhMQXtH.dll.xxx
PVRX2.exe
p8WnTlK9.dll.xxx
Locky-ramsoware-caused-by-js-file.dll
2016-09-12-Locky-ramsoware-caused-by-js-file.vir
eZNovzLYDscux.dll
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!