By using Saferwall you consent to our Terms of Service and Privacy Policy and allow us to share your submission with the security community. Learn more

Summary

Analyse score

1/ 13

1 antivirus venders flagged
this file as malicious

Signature

File is not signed

Last scanned

First submission

File type

sys

sys

Basic properties

CRC32

0x8003261b

MD5

7fb94dffbaf62b2b93843f484a0c7b86

Magic

PE32+ executable (DLL) (GUI) x86-64, for MS Windows

SHA1

42e5a0cb76b47d43a481e826ce779ca3e056419a

SHA256

93818ee04ff69e95c1fa4a7c791f64f6d4e6b88790392c76415c0d55fd0d7f13

SHA512

3114e509aa7d4974ab55089177f8d938dc77c3463423b87fb0f0aee4045dc87892cfbff5a7ad1b0713be7bf005a6fc9af8442de489d273e35fafb56203271ec7

SSDeep

12288:kn/zDvGHAykH8vLW/4+8bzbBSreMdWBY4ZyrE7K3yl8PeVooA/AB2LEJZsAQPUql:GzbGHAzHKjX1FBY4ZyrE7K3yl8PeVoow

Size

594.50KB

TLSH

fed48e57f7dbf6b0e6be827a86f1891c527774660260e78f664072886d22382453df0f

Packer
  • PE+(64): compiler: Microsoft Visual C/C++(2015 v.14.0)[-]
  • PE+(64): linker: Microsoft Linker(14.0, Visual Studio 2015 14.0*)[DLL64]
TrID
  • 68.8% (.CPL) Windows Control Panel Item (generic) (57583/11/19)
  • 12.5% (.EXE) Win64 Executable (generic) (10523/12/4)
  • 6.0% (.EXE) Win16 NE executable (generic) (5038/12/1)
  • 5.3% (.EXE) Win32 Executable (generic) (4504/4/1)
  • 2.4% (.EXE) OS/2 Executable (generic) (2029/13)
Tags

ExifTool File Metadata

CharacterSet

Unicode

CodeSize

160.50KB

Comments

Unmanaged loader shim for Excel-DNA Add-Ins

CompanyName

Govert van Drimmelen

EntryPoint

0x12a34

ExifToolVersionNumber

12.88

FileDescription

Excel-DNA Dynamic Link Library

FileFlags

(none)

FileFlagsMask

0x0017

FileOs

Win32

FileSize

609 kB

FileSubtype

0

FileType

Win64 DLL

FileTypeExtension

dll

FileVersion

1.0.0.2

FileVersionNumber

1.0.0.2

ImageFileCharacteristics

Executable, Large address aware, DLL

ImageVersion

0.0

InitializedDataSize

433.00KB

InternalName

ExcelDna

LanguageCode

Neutral 2

LegalCopyright

Copyright (C) 2005-2019 Govert van Drimmelen

LinkerVersion

14.0

MachineType

AMD AMD64

MimeType

application/octet-stream

ObjectFileType

Dynamic link library

OriginalFileName

ExcelDna.xll

OsVersion

5.2

PeType

PE32+

ProductName

Excel-DNA Add-In Framework for Microsoft Excel

ProductVersion

1.0

ProductVersionNumber

1.0.0.2

Subsystem

Windows GUI

SubsystemVersion

5.2

UninitializedDataSize

0

Submissions

Published Name Source Country
NaabAmooz.Excel.Demo-AddIn64-packed.xll web
N/A