Information about GF.dll.vir

GF.dll.vir

File Details

Product Name:

腾讯QQ
Company Name:

Tencent
MD5: 3cca5c3674ca871cb5897ed9254352c3
Size: 2 MB
First Published: 2017-05-21 06:06:58 (6 years ago)
Latest Published: 2020-12-04 21:49:06 (3 years ago)
Status: Undefined (on last analysis)
Analysis Date: 2020-12-04 21:49:06 (3 years ago)

Overview

Signed By: Tencent Technology(Shenzhen) Company Limited
Status: Valid

Common Places:

%appdata%\tencent\androidserver\1.0.0.510
%sysdrive%\adwcleaner\quarantine\files\vizfrvbhispgnmmhkwaeqpqxdjfkrrvp\androidserver\1.0.0.510
%profile%\ser\application data\tencent\androidserver\1.0.0.510
%profile%\dministrator\application data\tencent\androidserver\1.0.0.510
%programfiles%\tencent\qqpcmgr\11.5.17490.219\androidserver\1.0.0.510
%appdata%\tencent\androidserver
%programfiles%\tencent\qqpcmgr\11.5.17490.219\androidserver
%sysdrive%\2016-03-27\users\minh\appdata\roaming\tencent\androidserver
%sysdrive%\windows.old\users\win-softech\appdata\roaming\tencent\androidserver
%sysdrive%\windows.old\users\kai\appdata\roaming\tencent\androidserver

File Names:

GF.dll
GF.dll.vir

Geography:

18.6%
14.2%
8.1%
6.1%
4.9%
4.9%
4.5%
3.6%
3.2%
2.0%
2.0%
1.6%
1.6%
1.6%
1.6%
1.6%
1.2%
1.2%
1.2%
1.2%
1.2%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%

OS Version:

Windows 7 44.4%
Windows 10 33.1%
Windows 8.1 12.5%
Windows 8 6.9%
Windows XP 2.4%
Windows Server 2012 0.8%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x30800000
Entry Address: 0x001474b2

PE Sections:

Name Size of data MD5
.text 1441280 1842411dc4192ff99a216cd35c029597
.rdata 526848 8ee9aabdcb8c30ced95822f3553c0171
.data 65536 8d209daa91944f272d89dd60217d2f60
.rsrc 30720 561f3c72854bb40c8abfbdf93b6b79f4
.reloc 261632 a41b293377ec8e3753625c22aaa75cba

More information:

Search on Virustotal
copyright for information about GF.dll.vir