× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: a5ec68acee9b36b677afe5234a4b0fed65dbbea193fae40963e8aa679c9108b7
File name: 3gc7c2rp[1].dll
Detection ratio: 9 / 56
Analysis date: 2016-11-09 11:02:42 UTC ( 9 months, 1 week ago ) View latest
Antivirus Result Update
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9999 20161109
Bkav W32.eHeur.Malware09 20161109
CrowdStrike Falcon (ML) malicious_confidence_100% (D) 20161024
Sophos ML generic.a 20161018
Kaspersky HEUR:Trojan.Win32.Generic 20161109
Qihoo-360 HEUR/QVM39.1.0000.Malware.Gen 20161109
Rising Malware.Generic!glWY3GR55jR@2 (thunder) 20161109
Symantec Heur.AdvML.B 20161109
Tencent Win32.Trojan.Raasj.Auto 20161109
Ad-Aware 20161109
AegisLab 20161109
AhnLab-V3 20161108
Alibaba 20161109
ALYac 20161109
Antiy-AVL 20161109
Arcabit 20161109
Avast 20161109
AVG 20161109
Avira (no cloud) 20161109
AVware 20161109
BitDefender 20161109
CAT-QuickHeal 20161109
ClamAV 20161109
CMC 20161109
Comodo 20161109
Cyren 20161109
DrWeb 20161109
Emsisoft 20161109
ESET-NOD32 20161109
F-Prot 20161109
F-Secure 20161109
Fortinet 20161109
GData 20161109
Ikarus 20161109
Jiangmin 20161109
K7AntiVirus 20161108
K7GW 20161109
Kingsoft 20161109
Malwarebytes 20161109
McAfee 20161109
McAfee-GW-Edition 20161109
Microsoft 20161109
eScan 20161108
NANO-Antivirus 20161108
nProtect 20161109
Panda 20161108
Sophos AV 20161109
SUPERAntiSpyware 20161109
TheHacker 20161109
TrendMicro 20161109
TrendMicro-HouseCall 20161109
VBA32 20161108
VIPRE 20161109
ViRobot 20161109
Yandex 20161108
Zillya 20161108
Zoner 20161109
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright 2007

Product Bullzip PDF Printer
Original name config.exe
Internal name config
File version 3.00.0029
Description Command line configuraion program
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-11-09 08:16:04
Entry Point 0x00011320
Number of sections 6
PE sections
PE imports
RegOpenKeyW
InitCommonControlsEx
AbortPath
BeginPath
AnimatePalette
AddFontMemResourceEx
AngleArc
GetACP
GlobalAddAtomA
GetCurrentProcessId
CloseHandle
GetDriveTypeW
RedrawWindow
GetMessagePos
SetWindowRgn
SetMenuItemBitmaps
SetMenuDefaultItem
MoveWindow
EnableScrollBar
DestroyMenu
PostQuitMessage
GetForegroundWindow
DrawStateW
SetWindowPos
GetNextDlgTabItem
IsWindow
GrayStringW
ScreenToClient
EndDialog
WindowFromPoint
DrawIcon
GetMessageTime
SetMenuItemInfoW
SetActiveWindow
DispatchMessageW
GetCursorPos
MapDialogRect
GetDlgCtrlID
GetMenu
CharUpperW
SendMessageA
UnregisterClassW
GetClientRect
CreateAcceleratorTableW
DefMDIChildProcW
DrawTextW
SetScrollPos
CallNextHookEx
IsClipboardFormatAvailable
LoadImageW
GetKeyboardState
GetTopWindow
GetWindowTextW
CopyAcceleratorTableW
GetWindowTextLengthW
LoadAcceleratorsW
ScrollWindow
InvalidateRgn
CopyImage
MapVirtualKeyW
DrawEdge
GetParent
UpdateWindow
GetPropW
EqualRect
SetClassLongW
ShowScrollBar
MapVirtualKeyExW
GetMessageW
ShowWindow
DrawFrameControl
GetNextDlgGroupItem
SetPropW
GetMenuState
PeekMessageW
TranslateMDISysAccel
InsertMenuItemW
SetWindowPlacement
LockWindowUpdate
LoadIconW
TranslateMessage
IsWindowEnabled
GetWindow
GetMenuDefaultItem
SetClipboardData
GetWindowLongW
ToUnicodeEx
GetIconInfo
SetParent
RegisterClassW
CharLowerA
IsZoomed
GetWindowPlacement
DestroyWindow
SetWindowLongW
DrawMenuBar
IsCharLowerW
IsIconic
InvertRect
GetSubMenu
OpenClipboard
GetActiveWindow
IsDialogMessageW
FillRect
MonitorFromPoint
SetWindowContextHelpId
DeferWindowPos
RealChildWindowFromPoint
CreateWindowExW
TabbedTextOutW
EndPaint
GetUpdateRect
GetMenuItemInfoW
IsChild
SetFocus
RegisterWindowMessageW
GetMonitorInfoW
BeginPaint
OffsetRect
DefWindowProcW
GetScrollPos
CopyIcon
KillTimer
TrackMouseEvent
GetComboBoxInfo
TranslateAcceleratorW
MapWindowPoints
GetClassInfoExW
LoadBitmapW
SendDlgItemMessageA
GetSystemMetrics
EnableMenuItem
SetScrollRange
GetWindowRect
InflateRect
SetCapture
ReleaseCapture
IntersectRect
ShowOwnedPopups
PostMessageW
InvalidateRect
CheckDlgButton
DrawTextExW
WaitMessage
CreatePopupMenu
CheckMenuItem
DrawFocusRect
GetClassLongW
GetLastActivePopup
PtInRect
DrawIconEx
CharUpperBuffW
SetWindowTextW
SetTimer
GetDlgItem
RemovePropW
BringWindowToTop
ClientToScreen
GetAsyncKeyState
TrackPopupMenu
PostThreadMessageW
GetMenuItemCount
DestroyAcceleratorTable
GetDesktopWindow
SetWindowsHookExW
LoadCursorW
GetSystemMenu
ReuseDDElParam
GetMenuItemID
InsertMenuW
SetForegroundWindow
NotifyWinEvent
GetMenuStringW
EmptyClipboard
CreateDialogIndirectParamW
ReleaseDC
GetScrollRange
SetLayeredWindowAttributes
GetScrollInfo
ModifyMenuW
HideCaret
GetKeyboardLayout
CopyRect
GetCapture
MessageBeep
LoadMenuW
RemoveMenu
GetWindowThreadProcessId
GetSysColorBrush
BeginDeferWindowPos
MessageBoxW
SendMessageW
SetMenu
SetRectEmpty
AppendMenuW
GetWindowDC
DestroyCursor
AdjustWindowRectEx
GetSysColor
RegisterClipboardFormatW
SetScrollInfo
GetKeyState
EndDeferWindowPos
GetWindowRgn
UpdateLayeredWindow
GetDoubleClickTime
DestroyIcon
EnumDisplayMonitors
wsprintfW
DefFrameProcW
IsWindowVisible
WinHelpW
SubtractRect
UnpackDDElParam
SetCursorPos
SystemParametersInfoW
UnionRect
GetDC
FrameRect
SetRect
DeleteMenu
GetKeyNameTextW
CharNextW
CallWindowProcW
GetClassNameW
GetClassInfoW
MonitorFromWindow
ValidateRect
IsRectEmpty
IsMenu
GetFocus
CreateMenu
EnableWindow
CloseClipboard
SetCursor
UnhookWindowsHookEx
GetMenuCheckMarkDimensions
PlaySoundA
ClosePrinter
_except_handler3
exit
Number of PE resources by type
RT_VERSION 1
Number of PE resources by language
ENGLISH US 1
PE resources
ExifTool file metadata
SubsystemVersion
5.0

LinkerVersion
2.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
3.0.0.29

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x0000

CharacterSet
Unicode

InitializedDataSize
52224

EntryPoint
0x11320

OriginalFileName
config.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 2007

FileVersion
3.00.0029

TimeStamp
2016:11:09 09:16:04+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
config

ProductVersion
3.00.0029

FileDescription
Command line configuraion program

OSVersion
5.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Bullzip

CodeSize
89600

ProductName
Bullzip PDF Printer

ProductVersionNumber
3.0.0.29

FileTypeExtension
dll

ObjectFileType
Executable application

File identification
MD5 f86d98b1a67952f290c550db1c0bdcbc
SHA1 ee27d3e4a098422fe51ca61fcf575efc87d6e6d5
SHA256 a5ec68acee9b36b677afe5234a4b0fed65dbbea193fae40963e8aa679c9108b7
ssdeep
3072:K22u6O1q54l79WWolH8SPl4PZS5Ocgdp1J3EF5B:24379tSd4QKp1JU

authentihash 6e2ae943483530db31c5db99904a0c10818cd5a9d25c3b62bcf124a90fb63d95
imphash 6eac9bc34589631805b75a1a3f530b5d
File size 119.5 KB ( 122368 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID Win32 Dynamic Link Library (generic) (43.5%)
Win32 Executable (generic) (29.8%)
Generic Win/DOS Executable (13.2%)
DOS Executable Generic (13.2%)
Tags
pedll

VirusTotal metadata
First submission 2016-11-09 11:02:42 UTC ( 9 months, 1 week ago )
Last submission 2016-11-12 15:07:34 UTC ( 9 months, 1 week ago )
File names 3gc7c2rp[0]
config.exe
3gc7c2rp[1].dll
3gc7c2rp.zip.exe
config
3gc7c2rp
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!