× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 6701e45f2633d0500b32e5041bdcf15145562caf0c4b3dbbc5b1c8003253c0e9
File name: MB116S.DLL
Detection ratio: 0 / 57
Analysis date: 2016-03-10 05:42:37 UTC ( 3 years, 1 month ago )
Antivirus Result Update
Ad-Aware 20160310
AegisLab 20160310
Yandex 20160308
AhnLab-V3 20160309
Alibaba 20160310
ALYac 20160310
Antiy-AVL 20160310
Arcabit 20160310
Avast 20160310
AVG 20160310
Avira (no cloud) 20160310
AVware 20160310
Baidu 20160225
Baidu-International 20160309
BitDefender 20160310
Bkav 20160309
ByteHero 20160310
CAT-QuickHeal 20160310
ClamAV 20160310
CMC 20160307
Comodo 20160310
Cyren 20160310
DrWeb 20160310
Emsisoft 20160310
ESET-NOD32 20160310
F-Prot 20160310
F-Secure 20160310
Fortinet 20160310
GData 20160310
Ikarus 20160310
Jiangmin 20160310
K7AntiVirus 20160309
K7GW 20160310
Kaspersky 20160310
Malwarebytes 20160310
McAfee 20160310
McAfee-GW-Edition 20160309
Microsoft 20160310
eScan 20160310
NANO-Antivirus 20160310
nProtect 20160309
Panda 20160309
Qihoo-360 20160310
Rising 20160310
Sophos AV 20160309
SUPERAntiSpyware 20160310
Symantec 20160309
Tencent 20160310
TheHacker 20160309
TotalDefense 20160308
TrendMicro 20160310
TrendMicro-HouseCall 20160310
VBA32 20160309
VIPRE 20160310
ViRobot 20160310
Zillya 20160309
Zoner 20160310
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows command line subsystem.
FileVersionInfo properties
Copyright
MB Co,Ltd.

Product MB OfficeCenter 116
Original name MB116S.DLL
Internal name MB116S.DLL
File version 1.01
Description MB Co,Ltd. : Print Processor
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2004-04-13 07:30:40
Entry Point 0x0001D31B
Number of sections 4
PE sections
Overlays
MD5 4a09fbf313bbb333a66a0a8d9771fbc7
File type ASCII text
Offset 171520
Size 272
Entropy 0.99
PE imports
SetSecurityDescriptorDacl
RegCloseKey
OpenProcessToken
RegOpenKeyExW
RegQueryValueExW
AdjustTokenPrivileges
SetTokenInformation
LookupPrivilegeValueW
InitializeSecurityDescriptor
CreateProcessAsUserW
GetTextMetricsW
SetMapMode
GetWindowOrgEx
SetICMMode
GetROP2
SetColorAdjustment
EndDoc
DeleteObject
IntersectClipRect
GetMiterLimit
GetPolyFillMode
SetTextAlign
StretchBlt
AbortDoc
SetWindowExtEx
WidenPath
ExtCreatePen
SetBkColor
ResetDCW
GetBkColor
CreateFontIndirectW
OffsetRgn
EnumFontsW
TextOutA
LPtoDP
GdiPlayEMF
GetBrushOrgEx
SetBkMode
EnumFontFamiliesW
CreateBrushIndirect
ScaleWindowExtEx
StrokePath
ExtSelectClipRgn
SetROP2
ExtEscape
CreateScalableFontResourceW
GetTextColor
Escape
BeginPath
SetViewportExtEx
CreatePenIndirect
SetGraphicsMode
GetWindowExtEx
PatBlt
AddFontResourceW
GetClipBox
Rectangle
GetDeviceCaps
LineTo
DeleteDC
SetWorldTransform
StartPage
GetObjectW
CreateDCW
ExtTextOutW
CreateBitmap
SelectClipRgn
GetTextAlign
EndPage
SetWindowOrgEx
GetClipRgn
GetViewportExtEx
GetTextExtentPoint32W
EndPath
GetBkMode
CreateICW
MaskBlt
ModifyWorldTransform
PlgBlt
FillPath
SelectClipPath
CreateDIBSection
SetTextColor
PolyDraw
SetMiterLimit
MoveToEx
SetViewportOrgEx
GetGraphicsMode
CreateCompatibleDC
StrokeAndFillPath
SetStretchBltMode
SetBrushOrgEx
CreateRectRgn
SelectObject
SetPolyFillMode
RemoveFontResourceW
GetStretchBltMode
Polyline
StartDocW
GetLastError
EnterCriticalSection
UnmapViewOfFile
GetSystemInfo
GetModuleFileNameW
WaitForSingleObject
OpenEventW
FreeLibrary
GetTickCount
lstrlenW
DeleteCriticalSection
GetCurrentProcess
OpenFileMappingW
GetFileSize
MultiByteToWideChar
MapViewOfFile
DeleteFileW
lstrcatW
GetPrivateProfileStringW
GetTempFileNameW
CreateFileMappingW
lstrcpyW
LoadLibraryW
SetFilePointer
GetSystemDirectoryW
ReadFile
WriteFile
FindNextFileW
ResetEvent
FindFirstFileW
WaitForMultipleObjects
GetProcAddress
SetEvent
GlobalMemoryStatus
CreateEventW
GetExitCodeThread
InitializeCriticalSection
OutputDebugStringW
GetTempPathW
CreateFileW
VirtualFree
FindClose
Sleep
CloseHandle
GetCurrentThreadId
LeaveCriticalSection
VirtualAlloc
GetEnvironmentVariableW
SetLastError
MulDiv
rand
malloc
??1type_info@@UAE@XZ
wcstoul
srand
_wcsnicmp
_CxxThrowException
_except_handler3
?terminate@@YAXXZ
wcslen
_ftol
__CxxFrameHandler
_wcsicmp
wcschr
_adjust_fdiv
free
swprintf
wcscat
wcsncmp
memmove
wcscpy
iswdigit
_beginthreadex
time
_initterm
SysFreeString
SysStringLen
SysAllocStringLen
ImpersonatePrinterClient
RevertToPrinterSelf
LoadStringW
PostMessageW
MessageBoxW
wsprintfW
WTSEnumerateSessionsW
WTSFreeMemory
CoUninitialize
CoCreateInstance
CoInitialize
CoInitializeSecurity
CoCreateInstanceEx
PE exports
Number of PE resources by type
RT_STRING 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 2
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
4.1

LinkerVersion
5.12

ImageVersion
5.0

FileSubtype
0

FileVersionNumber
1.1.0.0

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
13824

EntryPoint
0x1d31b

OriginalFileName
MB116S.DLL

MIMEType
application/octet-stream

LegalCopyright
MB Co,Ltd.

FileVersion
1.01

TimeStamp
2004:04:13 08:30:40+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
MB116S.DLL

ProductVersion
1.01

FileDescription
MB Co,Ltd. : Print Processor

OSVersion
5.0

FileOS
Windows NT 32-bit

Subsystem
Windows command line

MachineType
Intel 386 or later, and compatibles

CompanyName
MB Co,Ltd.

CodeSize
160256

ProductName
MB OfficeCenter 116

ProductVersionNumber
1.1.0.0

Warning
Possibly corrupt Version resource

FileTypeExtension
dll

ObjectFileType
Dynamic link library

File identification
MD5 3c804c6ae39ceb4b89cf1109df9f408f
SHA1 568b97fab2bad27bd2bd295ea0e68822f10194f0
SHA256 6701e45f2633d0500b32e5041bdcf15145562caf0c4b3dbbc5b1c8003253c0e9
ssdeep
3072:R6JVDg9JONsU/YKo9fu9KJ1wKERL9AnRjREO0wbBuuw/49xuP975DFw8MTK:2VWgNZ/YKojJ1lPnPEO0Kuuw/t971b

authentihash 030ec8239a601f5f5b0d492c371d242be332415638a07bc9ac836f37e10db24a
imphash efd1cee36e2c2e7b78a704d014f2daba
File size 167.8 KB ( 171792 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (console) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (42.2%)
Win64 Executable (generic) (37.3%)
Win32 Dynamic Link Library (generic) (8.8%)
Win32 Executable (generic) (6.0%)
Generic Win/DOS Executable (2.7%)
Tags
pedll overlay

VirusTotal metadata
First submission 2016-02-11 05:32:38 UTC ( 3 years, 2 months ago )
Last submission 2016-02-11 05:32:38 UTC ( 3 years, 2 months ago )
File names MB116S.DLL
mb116s.dll
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!