VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, VirSCAN can scan compressed files with password 'infected' or 'virus'.

Language
Server load
Server Load

File information
Safety rating:75
Behavior list
Basic Information
MD5:180251251dfa7d32962e6834245aaf87
file type:zip
Production company:
version:
Shell or compiler information:COMPILER:MingWin32 - Dev C++ v4.x (h) *
Subfile information:KeyToJoy.dat / d2a46e6b9232a275bd7f18f386c8c73f / Unknown
patch_controls.exe / 6d99a0d32f453f62bcacd063b5f93157 / EXE
VJoy.ini / f2f90c50d4765a1750d102dab014dbac / Unknown
KeyToJoy.part2.rar / 54750f6d6a9b2ca30a9ba289afce4bfc / Rar
Process behavior
Behavior description:创建进程
details:ImagePath = C:\WINDOWS\system32\cmd.exe, CmdLine = C:\WINDOWS\system32\cmd.exe /c pause
Behavior description:枚举进程
details:N/A
File behavior
Behavior description:查找文件
details:FileName = C:\WINDOWS
FileName = C:\WINDOWS\system32
FileName = C:\WINDOWS\system32\cmd.exe
FileName = C:\DOCUME~1
FileName = C:\DOCUME~1\ADMINI~1
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\%temp%
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\%temp%\1445252005.592243.exe_7zdump
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\%temp%\1445252005.595816.exe_7zdump\vjoy_gr
FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\%temp%\1445252005.599358.exe_7zdump\vjoy_gr\KeyToJoy
Other behavior
Behavior description:样本控制台输出内容
details:N/A
Behavior description:创建互斥体
details:SHIMLIB_LOG_MUTEX
Run screenshot
VirSCAN

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号