VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, VirSCAN can scan compressed files with password 'infected' or 'virus'.

Language
Server load
Server Load
文件信息
安全评分 :75
基本信息
MD5:1a5c5c02adf497af84378a434cfe03d8
文件类型:EXE
出品公司:
版本:
壳或编译器信息:COMPILER:Microsoft Visual Studio .NET 2005 -- 2008 -> Microsoft Corporation *
关键行为
行为描述:屏蔽窗口关闭消息
详情信息:hWnd = 0x000201ac, Text = Preparing setup..., ClassName = Preparing setup....
网络行为
行为描述:建立到一个指定的套接字连接
详情信息:URL: li****id, IP: **.133.40.**:128, SOCKET = 0x00000154
行为描述:发送HTTP包
详情信息:GET http://live.windowchannel.bid/h_redir.php?offer_id=4&aff_id=3814&source=5784&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=1276726573&url=http%3A%2F%2Flive.windowchannel.bid/offer.php%3FaffId%3D{aff_id}%26trackingId%3D299729535%26instId%3D5784%26ho_trackingid%3D{transaction_id}%26cc%3D{country_code}%26cc_typ%3Dho%26sb%3Dx86%26net%3D4.6.01590%26ie%3D8%2e0%2e7601%2e17514%26wv%3D7sp1%26db%3DInternetExplorer%26uac%3D1%26cid%3Ddc1d2bf3bccd61107844328b86cdb1d3%26osd%3D997%26res%3D916x816%26v%3D3 HTTP/1.1 Host: li****id Connection: close Accept: */* User-Agent: InstallCapital
行为描述:按名称获取主机地址
详情信息:GetAddrInfoW: li****id
其他行为
行为描述:检测自身是否被调试
详情信息:IsDebuggerPresent
行为描述:窗口信息
详情信息:Pid = 2848, Hwnd=0x201ac, Text = Preparing setup..., ClassName = Preparing setup....
行为描述:屏蔽窗口关闭消息
详情信息:hWnd = 0x000201ac, Text = Preparing setup..., ClassName = Preparing setup....
行为描述:打开事件
详情信息:HookSwitchHookEnabledEvent
Local\MSCTF.CtfActivated.Default1
Local\MSCTF.AsmCacheReady.Default1
\SECURITY\LSA_AUTHENTICATION_INITIALIZED
行为描述:打开互斥体
详情信息:Local\MSCTF.Asm.MutexDefault1
行为描述:解密数据
详情信息:[CryptDecrypt] Data: 0x00244A30, CipherTextLen: 3264, PlainTextLen: 3262, Flags: 0x00000000
行为描述:导入密钥
详情信息:[CryptImportKey] Algorithm: CALG_3DES (0x00006603), Data: 0x01BCFF14, DataLen: 36, Flags: 0x00000001
运行截图
VirSCAN

About VirSCAN | Privacy Policy | Contact us | link | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

京公网安备 11010802020746号