GridinSoft Threat Intelligence
libglib-2.0-0.dll file report
Why it matters
Evidence available for this file
No final classification is available yet.
First seen 2017-07-25 10:15:54 (8 years ago); latest analysis 2023-11-28 23:41:54 (2 years ago).
Company metadata: The GLib developer community. Product metadata: GLib.
ThreatInfo has seen this file in user or system paths listed below. Unexpected locations increase the need for local verification.
Recommended action
What to do next
- Use the hash and metadata below to verify the exact file identity.
- Review publisher, signature, paths, and PE details for inconsistencies.
- Run a local scan if the file appears unexpectedly or starts with Windows.
File context
libglib-2.0-0.dll is a Windows file recorded in the ThreatInfo database. It is associated with GLib. The reported company name is The GLib developer community. The current detection status is Undefined, based on the latest analysis from 2023-11-28 23:41:54 (2 years ago).
ThreatInfo does not have a final classification for this file yet. Use the technical details below to compare the hash, size, signature, and observed locations with the copy found on your device.
File Details
| Product Name: | GLib |
| Company Name: | The GLib developer community |
| MD5: | df20ea0c9f416a2fb51c779cc986d3c9 |
| Size: | 1 MB |
| First Published: | 2017-07-25 10:15:54 (8 years ago) |
| Latest Published: | 2023-11-28 23:41:54 (2 years ago) |
| Status: | Undefined (on last analysis) | |
| Analysis Date: | 2023-11-28 23:41:54 (2 years ago) |
Common Places:
| %programfiles%\fileviewpro\wpd |
| %programfiles%\fileviewpro |
ThreatInfo has observed libglib-2.0-0.dll in the locations listed above. Files found in temporary folders, user profile folders, startup locations, or unusual application directories should be reviewed more carefully than files installed under a known program directory.
Geographic signal
Observed country distribution
ThreatInfo has seen libglib-2.0-0.dll across 21 countries. Use this signal to compare local evidence with where the sample is most often reported.
The strongest geographic signal for this file is Russian Federation with 50.0% of observed hits. Geographic distribution can help identify targeted campaigns, regional software bundles, or where a file is most commonly reported.
OS Version:
The most common operating system signal for libglib-2.0-0.dll is Windows 10 with 47.4% of observed hits. If your system differs from the common profile, check whether the file was introduced by a specific installer, archive, or removable device.
Analysis
libglib-2.0-0.dll is identified as pe for 32-bit systems. The subsystem is Windows CUI. PE header values are useful for triage, especially when they do not match the expected publisher, product, or release timeline.
PE Sections:
Section layout highlights raw-size concentration, repeated names, packer markers, and hashes that can be compared across related samples.
c92120dd9b1b813adc2a7a3db324a11d
d43efff4d719c8807771b83bd973acab
1e55dc8d744bb5984dfa32f17847b771
00000000000000000000000000000000
7dbdf355831981b52e431257a5a1dbc8
00e690bc4f54643f5bc02e86e24e1f83
14971a9fe60f49b49d08795d39a07cd0
1371a2e6b805dacb994bd0441d81e440
4c95e616b40c605157efa51b1ba2dc26
8da5ddb73716bd1ab4b3ccdf2f8242e5
ac8e36b2fd0ae4acf5f59e58be728e4d
f43ee375d72cf7e75efd01e4c3f3747b
f458ffac3cf5b2b57db685a7c5660318
8d91b9fce0056f15f74a88edade8d1b3
f3bc4d79a8e9a4948bc9971b8bb7a35f
dcc53115f83ca31b98e928fcf97845bf
PE section names and hashes can reveal packing, injected resources, or unusual build artifacts. Sections with uncommon names, very large raw data, or hashes that differ from a trusted copy deserve additional review.
Report conclusion
This file is still under review
ThreatInfo has not assigned a final verdict yet. Compare the file hash, location, signature, and publisher before trusting the file on a production system.