× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: f81df93d41b76ab8ab7a8ffc3d7d82401ff16a838265c78c1b7f5972a74e5e9e
File name: e134dkdCXFS.dll
Detection ratio: 11 / 56
Analysis date: 2016-10-27 09:34:56 UTC ( 9 months, 3 weeks ago ) View latest
Antivirus Result Update
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9795 20161027
Bkav HW32.Packed.59BA 20161026
CrowdStrike Falcon (ML) malicious_confidence_100% (D) 20160725
Cyren W32/Locky.BC.gen!Eldorado 20161027
F-Prot W32/Locky.BC.gen!Eldorado 20161027
Sophos ML ransom.win32.locky.a 20161018
Malwarebytes Ransom.Locky 20161027
McAfee GenericR-IRP!340EF9E20D06 20161027
Qihoo-360 HEUR/QVM39.1.0000.Malware.Gen 20161027
Rising Malware.Generic!Zl459GVA8AN@1 (thunder) 20161027
Symantec Heur.AdvML.B 20161027
Ad-Aware 20161027
AegisLab 20161027
AhnLab-V3 20161026
Alibaba 20161027
ALYac 20161027
Antiy-AVL 20161027
Arcabit 20161027
Avast 20161027
AVG 20161027
Avira (no cloud) 20161026
AVware 20161027
BitDefender 20161027
CAT-QuickHeal 20161027
ClamAV 20161027
CMC 20161026
Comodo 20161027
DrWeb 20161027
Emsisoft 20161027
ESET-NOD32 20161027
F-Secure 20161027
Fortinet 20161027
GData 20161027
Ikarus 20161027
Jiangmin 20161027
K7AntiVirus 20161025
K7GW 20161027
Kaspersky 20161027
Kingsoft 20161027
McAfee-GW-Edition 20161027
Microsoft 20161027
eScan 20161027
NANO-Antivirus 20161027
nProtect 20161027
Panda 20161026
Sophos AV 20161027
SUPERAntiSpyware 20161027
Tencent 20161027
TheHacker 20161025
TrendMicro 20161027
TrendMicro-HouseCall 20161027
VBA32 20161026
VIPRE 20161027
ViRobot 20161027
Yandex 20161026
Zillya 20161025
Zoner 20161027
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (C) 2008-2013

Product Dexpot
Original name autodex.exe
Internal name autodex
File version 1.6.2.0
Description Dexpot Task Scheduling Helper
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-10-27 06:24:17
Entry Point 0x0000C049
Number of sections 5
PE sections
PE imports
RegCreateKeyExW
CryptDestroyKey
RegCloseKey
RegDeleteKeyW
RegQueryValueExA
RegCreateKeyW
CryptReleaseContext
LookupPrivilegeValueW
RegOpenKeyExW
RegCreateKeyExA
OpenThreadToken
CryptHashData
RegQueryValueExW
CryptCreateHash
SetSecurityDescriptorDacl
RegFlushKey
OpenProcessToken
RegEnumKeyW
RegOpenKeyW
RegOpenKeyExA
RegQueryValueW
CryptVerifySignatureW
GetUserNameA
GetUserNameW
RegQueryInfoKeyW
RegEnumKeyExW
CryptAcquireContextW
RegEnumKeyA
RegRestoreKeyW
CryptDestroyHash
CryptGetUserKey
RegDeleteValueW
RegSetValueExW
FreeSid
AllocateAndInitializeSid
InitializeSecurityDescriptor
RegSetValueExA
RegDeleteValueA
ImageList_BeginDrag
ImageList_SetBkColor
ImageList_Replace
FlatSB_SetScrollInfo
FlatSB_GetScrollPos
FlatSB_GetScrollInfo
ImageList_GetDragImage
FlatSB_SetScrollProp
ImageList_Create
ImageList_DragMove
Ord(17)
ImageList_SetIconSize
ImageList_Write
ImageList_GetImageCount
ImageList_Destroy
_TrackMouseEvent
ImageList_Draw
ImageList_GetIconSize
ImageList_DragLeave
ImageList_GetBkColor
FlatSB_SetScrollPos
ImageList_DragEnter
ImageList_Add
InitializeFlatSB
ImageList_SetImageCount
ImageList_DragShowNolock
ImageList_DrawEx
ImageList_Remove
ImageList_Read
ImageList_EndDrag
GetSaveFileNameW
GetFileTitleW
CommDlgExtendedError
ImmReleaseContext
ImmGetContext
GetStdHandle
FileTimeToDosDateTime
GetConsoleOutputCP
ReleaseMutex
FileTimeToSystemTime
GetFileAttributesA
WaitForSingleObject
GetDriveTypeA
FindFirstFileW
HeapAlloc
SignalObjectAndWait
GetFileAttributesW
lstrcmpW
GetExitCodeProcess
FreeEnvironmentStringsA
CreatePipe
GetCurrentProcess
GetDriveTypeW
GetConsoleMode
GetLocaleInfoA
LocalAlloc
FreeEnvironmentStringsW
SetErrorMode
GetLogicalDrives
GetFileInformationByHandle
GetThreadContext
GetLocaleInfoW
EnumResourceLanguagesW
GetFileTime
GetTempPathA
WideCharToMultiByte
GetStringTypeA
GetSystemTimeAsFileTime
GetDiskFreeSpaceW
InterlockedExchange
GetTimeZoneInformation
SetStdHandle
GetDiskFreeSpaceA
GetStringTypeW
GetThreadPriority
SetFileAttributesA
SetEvent
LocalFree
FormatMessageW
ResumeThread
InitializeCriticalSection
LoadResource
GlobalHandle
GetLogicalDriveStringsW
FindClose
TlsGetValue
FormatMessageA
SetFileAttributesW
GetCurrentThread
GetUserDefaultUILanguage
GetSystemTime
DeviceIoControl
LocalLock
SuspendThread
OutputDebugStringW
RemoveDirectoryW
Beep
ExitProcess
GetModuleFileNameA
RaiseException
SetProcessWorkingSetSize
GetPriorityClass
GetVolumeInformationW
LoadLibraryExW
MultiByteToWideChar
EnumCalendarInfoW
SetFilePointerEx
GetSystemPowerStatus
FlushInstructionCache
GetPrivateProfileStringW
MoveFileW
CreateMutexA
GetFullPathNameW
GlobalAddAtomW
CreateThread
GetSystemDirectoryW
DeleteCriticalSection
GetExitCodeThread
CreateSemaphoreW
ConvertDefaultLocale
CreateMutexW
MulDiv
ExitThread
GlobalMemoryStatus
SetCurrentDirectoryW
GlobalAlloc
LocalFileTimeToFileTime
GetDiskFreeSpaceExW
SetEndOfFile
GetVersion
InterlockedIncrement
WriteConsoleW
CloseHandle
HeapFree
EnterCriticalSection
SetHandleCount
LoadLibraryW
GlobalGetAtomNameW
FreeLibrary
QueryPerformanceCounter
GetTickCount
TlsAlloc
GetVersionExA
LoadLibraryA
RtlUnwind
CopyFileW
GetStartupInfoA
UnlockFile
GetFileSize
LCMapStringW
OpenProcess
CreateDirectoryA
DeleteFileA
GetDateFormatW
GetStartupInfoW
ReadProcessMemory
CreateDirectoryW
DeleteFileW
GlobalLock
GetProcessHeap
GetTempFileNameW
GetComputerNameW
CompareStringW
lstrcpyW
GetModuleFileNameW
ExpandEnvironmentStringsW
lstrcmpA
FindNextFileW
CompareStringA
GetComputerNameA
FindNextFileA
DuplicateHandle
GetProcAddress
CreateEventW
CreateFileW
GetFileType
TlsSetValue
CreateFileA
GetCurrentThreadId
LeaveCriticalSection
GetLastError
SystemTimeToFileTime
GlobalDeleteAtom
GetSystemInfo
lstrlenA
GlobalFree
GetConsoleCP
HeapReAlloc
GetThreadLocale
GetEnvironmentStringsW
GlobalUnlock
LockFile
GetCPInfo
SwitchToThread
SizeofResource
GetCurrentDirectoryW
GetCurrentProcessId
LockResource
SetFileTime
GetCommandLineW
GetCurrentDirectoryA
HeapSize
GetCommandLineA
InterlockedCompareExchange
WritePrivateProfileStringW
lstrcpynW
QueryPerformanceFrequency
ReleaseSemaphore
MapViewOfFile
TlsFree
SetFilePointer
ReadFile
GlobalFlags
FindFirstFileA
GetACP
GetModuleHandleW
FreeResource
FileTimeToLocalFileTime
GetFileAttributesExW
GetEnvironmentStrings
GetLocalTime
UnmapViewOfFile
FindResourceW
VirtualQuery
VirtualFree
Sleep
VirtualAlloc
GetOEMCP
ResetEvent
TransparentBlt
AlphaBlend
SysStringLen
SysAllocString
SafeArrayCreate
VariantCopy
VariantInit
CreateErrorInfo
SafeArrayGetLBound
UnRegisterTypeLib
SafeArrayDestroy
SafeArrayGetUBound
LoadTypeLib
SysFreeString
LoadRegTypeLib
VariantChangeType
SafeArrayGetElement
SafeArrayPtrOfIndex
SafeArrayGetVartype
SafeArrayCopy
SetErrorInfo
VarUI4FromStr
VariantTimeToSystemTime
SystemTimeToVariantTime
SysAllocStringLen
RegisterTypeLib
VariantClear
SysReAllocStringLen
GetErrorInfo
SafeArrayGetDim
EnumProcesses
EnumProcessModules
GetModuleBaseNameW
SHGetFolderLocation
ShellExecuteExA
SHEmptyRecycleBinW
SHCreateDirectoryExW
SHBrowseForFolderW
DragQueryFileW
SHFileOperationW
SHGetPathFromIDListW
SHQueryRecycleBinW
ShellExecuteA
ExtractIconExW
SHGetSpecialFolderLocation
ShellExecuteExW
SHGetDesktopFolder
Shell_NotifyIconW
SHGetPathFromIDListA
SHGetSpecialFolderPathW
SHGetMalloc
CommandLineToArgvW
DragFinish
PathFindFileNameW
SHCopyKeyW
PathIsUNCW
PathFindExtensionW
PathStripToRootW
PathMakeSystemFolderW
PathUnmakeSystemFolderW
SetFocus
GetForegroundWindow
RegisterWindowMessageW
UnregisterHotKey
SetMenuItemBitmaps
LoadBitmapW
SetRectEmpty
EnableScrollBar
DestroyMenu
PostQuitMessage
GetMessagePos
SetWindowPos
IsWindow
GrayStringW
DispatchMessageA
ScreenToClient
WindowFromPoint
DefWindowProcW
AppendMenuW
DrawIcon
CharUpperBuffW
SetMenuItemInfoW
SendMessageW
SetActiveWindow
DispatchMessageW
GetCursorPos
CharLowerBuffW
GetDlgCtrlID
DefFrameProcW
UnregisterClassA
GetMenuStringW
SendMessageA
UnregisterClassW
GetClientRect
GetMenuItemInfoW
SetCaretPos
AllowSetForegroundWindow
DrawTextW
GetNextDlgTabItem
InSendMessage
CallNextHookEx
CharPrevW
GetSysColor
TrackPopupMenu
GetActiveWindow
RegisterHotKey
MapVirtualKeyExW
DialogBoxIndirectParamW
LoadImageA
RedrawWindow
LoadAcceleratorsW
ScrollWindow
GetMenuItemID
TrackMouseEvent
GetMessageA
GetClassInfoExW
UpdateWindow
GetPropW
EqualRect
SetClassLongW
GetMenuState
CreateCaret
GetWindowTextW
GetMessageW
ShowWindow
GetCaretPos
DrawFrameControl
SetPropW
EnumDisplayMonitors
PeekMessageW
TranslateMDISysAccel
InsertMenuItemW
CharUpperW
PeekMessageA
GetMenuCheckMarkDimensions
TranslateMessage
IsWindowEnabled
GetWindow
DestroyCaret
ActivateKeyboardLayout
RegisterClassW
GetIconInfo
MsgWaitForMultipleObjects
SetParent
SetClipboardData
IsWindowVisible
LoadStringW
GetKeyboardLayoutList
EnableMenuItem
TrackPopupMenuEx
DrawFocusRect
CreateMenu
GetWindowTextLengthW
ShowOwnedPopups
FillRect
CopyRect
DeferWindowPos
GetDialogBaseUnits
CreateWindowExW
ReleaseDC
GetWindowLongW
CharNextW
DragDetect
IsDialogMessageA
MapWindowPoints
VkKeyScanExW
GetMonitorInfoW
IsIconic
DrawEdge
SetCapture
BeginPaint
OffsetRect
DefMDIChildProcW
GetScrollPos
KillTimer
MapVirtualKeyW
GetComboBoxInfo
SetTimer
DefWindowProcA
GetClipboardData
GetParent
SendDlgItemMessageA
GetSystemMetrics
SetWindowLongW
GetWindowRect
InflateRect
PostMessageA
ReleaseCapture
IntersectRect
CharLowerW
SetWindowLongA
SendDlgItemMessageW
PostMessageW
InvalidateRect
GetScrollInfo
DrawTextExW
WaitMessage
CreatePopupMenu
CheckMenuItem
GetSubMenu
GetClassLongW
GetLastActivePopup
PtInRect
DrawIconEx
GetMessageTime
SetWindowTextW
GetDCEx
GetDlgItem
RemovePropW
BringWindowToTop
GetWindowPlacement
GetSystemMenu
ClientToScreen
GetAsyncKeyState
GetKeyboardState
PostThreadMessageW
GetMenuItemCount
AttachThreadInput
CheckDlgButton
ValidateRect
IsDialogMessageW
LoadCursorW
LoadIconW
ReuseDDElParam
GetDC
InsertMenuW
SetForegroundWindow
PostThreadMessageA
OpenClipboard
EmptyClipboard
GetCaretBlinkTime
EndPaint
CreateDialogIndirectParamW
DrawTextA
GetScrollRange
SetLayeredWindowAttributes
EndDialog
ModifyMenuW
GetKeyboardLayout
FindWindowW
GetCapture
MessageBeep
LoadMenuW
RemoveMenu
GetSysColorBrush
ShowScrollBar
MessageBoxW
GetMenu
RegisterClassExW
UnhookWindowsHookEx
MoveWindow
LoadKeyboardLayoutW
MessageBoxA
GetCursor
GetWindowDC
DestroyCursor
AdjustWindowRectEx
MsgWaitForMultipleObjectsEx
RegisterClipboardFormatW
GetKeyState
EndDeferWindowPos
SystemParametersInfoA
UpdateLayeredWindow
GetDoubleClickTime
TabbedTextOutW
DestroyIcon
GetTopWindow
BeginDeferWindowPos
WinHelpW
GetDesktopWindow
UnpackDDElParam
SystemParametersInfoW
FrameRect
SetRect
DeleteMenu
MonitorFromRect
SendMessageTimeoutA
CallWindowProcW
GetClassNameW
EnumClipboardFormats
DestroyWindow
GetClassInfoW
SetWindowsHookExW
IsRectEmpty
GetClassNameA
GetFocus
EnableWindow
CloseClipboard
TranslateAcceleratorW
GetKeyboardType
SetMenu
SetCursor
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueA
InternetTimeFromSystemTimeW
HttpQueryInfoW
InternetOpenW
InternetConnectW
InternetReadFile
InternetTimeToSystemTimeW
InternetSetOptionW
HttpSendRequestW
InternetErrorDlg
InternetCloseHandle
InternetGetConnectedState
InternetGetLastResponseInfoW
HttpOpenRequestW
HttpAddRequestHeadersW
WSAStartup
htons
recv
socket
setsockopt
bind
send
WSACleanup
recvfrom
gethostbyname
connect
sendto
ioctlsocket
closesocket
select
GdipDrawImageRectRect
GdipGetFontStyle
GdipDrawRectangleI
GdipSetClipRect
GdipSaveGraphics
GdipGetGenericFontFamilySansSerif
GdipTranslateMatrix
GdipSetPenBrushFill
GdipCreateBitmapFromScan0
GdipGetImageVerticalResolution
GdipDisposeImage
GdipImageSelectActiveFrame
GdipGetFamilyName
GdipGetFontSize
GdipGetCompositingMode
GdipGetTextRenderingHint
GdipGetCellAscent
GdipGetClipBounds
GdipSetStringFormatAlign
GdipImageGetFrameCount
GdipGetImageWidth
GdipDrawImageI
GdipStringFormatGetGenericTypographic
GdipCreateFont
GdipCloneBrush
GdipCloneStringFormat
GdipCreateLineBrushFromRectWithAngleI
GdipFree
GdipGetImageRawFormat
GdipGetImageHeight
GdipDeleteStringFormat
GdipTranslateWorldTransform
GdipSetPenDashStyle
GdipSetTextRenderingHint
GdipCreateBitmapFromHICON
GdipGetImageHorizontalResolution
GdipSetImageAttributesColorMatrix
GdipSaveImageToFile
GdipMeasureString
GdipTransformMatrixPoints
GdipBitmapSetResolution
GdiplusStartup
GdipDrawImageRectRectI
GdipGetFamily
GdipFillPath
GdipCreateBitmapFromStream
GdipGetImageThumbnail
GdipGetImageEncoders
GdipFillRectangleI
GdipDisposeImageAttributes
GdipSetCompositingMode
GdipClosePathFigure
GdipCreateMatrix
GdipDrawLine
GdipRotateMatrix
GdipGetImageGraphicsContext
GdipRestoreGraphics
GdipGetImageEncodersSize
GdipBitmapLockBits
GdipClonePen
GdipGetCellDescent
GdipStringFormatGetGenericDefault
GdipDrawPath
GdipDeleteFontFamily
GdipCloneFontFamily
GdipCreatePath
GdipBitmapUnlockBits
GdipFillRectangle
GdipDeleteFont
GdipSetPixelOffsetMode
GdipGetPropertyItem
GdipGetPropertyItemSize
GdipDrawLineI
GdipBitmapGetPixel
GdipCreateFontFamilyFromName
GdipSetStringFormatFlags
GdipDeleteBrush
GdipRotateWorldTransform
GdipInvertMatrix
GdipAddPathArcI
GdipSetMatrixElements
GdipSetClipRectI
GdipGetStringFormatFlags
GdipGetClipBoundsI
GdipGetImagePixelFormat
GdipCreateSolidFill
GdipSetSmoothingMode
GdipSetStringFormatTrimming
GdipGetEmHeight
GdipGetDC
GdipDeleteMatrix
GdipGetLineSpacing
GdipDeleteGraphics
GdipTransformPath
GdipCreateImageAttributes
GdipCreateFromHDC
GdipCreatePen1
GdipDrawRectangle
GdipAlloc
GdipDeletePath
GdipDeletePen
GdipSetInterpolationMode
GdipDrawString
GdipCloneImage
GdipReleaseDC
_purecall
__p__fmode
malloc
fgetc
??1type_info@@UAE@XZ
memset
fclose
__dllonexit
?terminate@@YAXXZ
fprintf
fflush
_onexit
strlen
_except_handler3
fputc
memcpy
wcslen
fputs
exit
_XcptFilter
memcmp
__setusermatherr
_controlfp
_adjust_fdiv
__CxxFrameHandler
_CxxThrowException
__set_app_type
__p__commode
_fileno
free
__p___initenv
_isatty
wcsncmp
__getmainargs
calloc
_initterm
memmove
_beginthreadex
_exit
_wtoi
_iob
CreateStreamOnHGlobal
OleLockRunning
CoRegisterClassObject
CoInitialize
OleInitialize
CoRevokeClassObject
CoLockObjectExternal
OleSetContainedObject
CoCreateInstance
CLSIDFromProgID
CoTaskMemRealloc
OleUninitialize
RegisterDragDrop
RevokeDragDrop
CoUninitialize
CoCreateInstanceEx
CoCreateGuid
CoTaskMemFree
CLSIDFromString
StringFromGUID2
CoTaskMemAlloc
SnmpUtilOidCpy
SnmpUtilOidNCmp
SnmpUtilVarBindFree
CreateURLMonikerEx
Number of PE resources by type
RT_ICON 28
RT_GROUP_ICON 3
RT_DIALOG 2
RT_VERSION 1
Number of PE resources by language
ENGLISH US 34
PE resources
ExifTool file metadata
SubsystemVersion
5.0

InitializedDataSize
115712

ImageVersion
0.0

ProductName
Dexpot

FileVersionNumber
1.6.2.0

UninitializedDataSize
0

LanguageCode
German

FileFlagsMask
0x0000

CharacterSet
Unicode

LinkerVersion
15.0

FileTypeExtension
dll

OriginalFileName
autodex.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
1.6.2.0

TimeStamp
2016:10:27 07:24:17+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
autodex

ProductVersion
1.6.0.0

FileDescription
Dexpot Task Scheduling Helper

OSVersion
5.0

FileOS
Win32

LegalCopyright
Copyright (C) 2008-2013

MachineType
Intel 386 or later, and compatibles

CompanyName
Dexpot GbR

CodeSize
131072

FileSubtype
0

ProductVersionNumber
1.6.0.0

EntryPoint
0xc049

ObjectFileType
Executable application

File identification
MD5 340ef9e20d06d854c75d72accb53b83f
SHA1 ff0ebed0983ba3174ea2834e59cc97f2d0f8b92b
SHA256 f81df93d41b76ab8ab7a8ffc3d7d82401ff16a838265c78c1b7f5972a74e5e9e
ssdeep
3072:0CEEmyTVMXMUjVp152r+aDPLpoRnoXUjWX8mrPp8dbvH1C3BjOAx4HikaCXUjVFt:0g8NjVpfsPLpUnoXQ28N2jOnUvyqSW

authentihash 841ed4dec7ab29d92d3d9b7988c220675b99121f9e04d6f41eb50ac931940665
imphash 025ec0bba6949fdb62cf316632a6696a
File size 242.0 KB ( 247808 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (67.4%)
Win32 Dynamic Link Library (generic) (14.2%)
Win32 Executable (generic) (9.7%)
Generic Win/DOS Executable (4.3%)
DOS Executable Generic (4.3%)
Tags
pedll

VirusTotal metadata
First submission 2016-10-27 09:34:56 UTC ( 9 months, 3 weeks ago )
Last submission 2016-11-24 02:40:51 UTC ( 8 months, 4 weeks ago )
File names autodex.exe
mpozceu
ebf8726c1fbbe665a76b1a7b57ec2301e2280ccf
e134dkdCXFS.dll
autodex
Z5jPGbgTR5
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!