iscsiwm.exe

¹¤³Ì1

Dick Pilot Inds.

Publisher:
Dick Pilot Inds.

Product:
¹¤³Ì1

Version:
1.0.0.0

MD5:
38eaacec3fe20f28f4126c42aeea1a83

SHA-1:
21f4dc27bca40227b61499fac2af444b5066d218

SHA-256:
31560ae814015cf4b49860c162bfa198a48bbeacb5f39cf37fc8aad306a7e865

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
12/25/2024 5:23:41 PM UTC  (today)

Scan engine
Detection
Engine version

F-Prot
W32/VBTrojan.17D1
4.6.5.141

File size:
24 KB (24,576 bytes)

Product version:
1.0.0.0

Original file name:
text.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\windows\temp\iscsiwm.exe

File PE Metadata
Compilation timestamp:
2/17/2016 2:38:01 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
384:/T5xF1qwy7WUk+xteHikXwAuOaFBaOBDalcW4nDv:/HI9cn/uOaFBaOBDaSWAv

Entry address:
0x12B4

Entry point:
68, EC, 13, 40, 00, E8, F0, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 38, 00, 00, 00, 00, 00, 00, 00, 22, F5, 50, 99, 32, 37, F1, 40, BF, 01, A1, 0E, 5E, 84, 36, CE, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 56, 62, B9, B3, CC, 31, 00, 00, 00, 00, 00, 00, FF, CC, 31, 00, 00, F1, 1B, B5, FC, 50, BF, C6, 43, B1, 1E, 95, 45, BD, 62, C0, 58, D0, 90, D6, 4E, 05, B8, DD, 45, AB, 9D, 5C, 97, FC, BD, 4B, 46, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00, AA, 00, 60, D3, 93, 00, 00, 00...
 
[+]

Entropy:
3.7445

Developed / compiled with:
Microsoft Visual Basic v5.0/v6.0

Code size:
12 KB (12,288 bytes)

The file iscsiwm.exe has been seen being distributed by the following URL.

Scan iscsiwm.exe - Powered by Reason Core Security