Upload files

By using Saferwall you consent to our Terms of Service and Privacy Policy and allow us to share your submission with the security community. Learn more

Summary

Like

Analyse score

4/ 13

4 antivirus venders flagged
this file as malicious

Signature

File is not signed

Last scanned

First submission

File type

sys

sys

Basic properties

CRC32

0x61ba78ad

MD5

3c5dbb500dc88aaab9d8d398a2d150ec

Magic

PE32 executable (DLL) (GUI) Intel 80386, for MS Windows

SHA1

a1dd5e216e2dd239ce3608f4ac7a193d52075ded

SHA256

8a7533675446decb24ffc44131d79dc028419d20c1fbfd84c4dee2dcf8d28abe

SHA512

02aec1b814dc000d89ff24686daa1e7e261dcf43e1567be5d6652cb044b685fea6dd594f19f3373c58ec4d6061d9d3f755f48465020aafa953f00ab165dccaf0

SSDeep

12288:uPIim+difIMPxdySSxe/SJDinnFBP2czi+PT0FnPCJ:YdEPxdyeP4nPI

Size

592.51KB

Packer
  • PE: linker: Microsoft Linker(14.29**)[DLL32]
  • PE: archive: Zip(2.0)[15.1%,13 files]
TrID
  • 32.2% (.EXE) Win64 Executable (generic) (10523/12/4)
  • 20.1% (.DLL) Win32 Dynamic Link Library (generic) (6578/25/2)
  • 15.4% (.EXE) Win16 NE executable (generic) (5038/12/1)
  • 13.7% (.EXE) Win32 Executable (generic) (4505/5/1)
  • 6.2% (.EXE) OS/2 Executable (generic) (2029/13)
Tags

ExifTool File Metadata

CodeSize

533.50KB

EntryPoint

0x7b18b

ExifToolVersionNumber

12.57

FileSize

607 kB

FileType

Win32 DLL

FileTypeExtension

dll

ImageFileCharacteristics

Executable, 32-bit, DLL

ImageVersion

0.0

InitializedDataSize

66.50KB

LinkerVersion

14.29

MachineType

Intel 386 or later, and compatibles

MimeType

application/octet-stream

OsVersion

6.0

PeType

PE32

Subsystem

Windows GUI

SubsystemVersion

6.0

UninitializedDataSize

0

Submissions

Published Name Source Country
PlugX.dll.bin web
Viet Nam