VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, VirSCAN can scan compressed files with password 'infected' or 'virus'.

Language
Server load
Server Load

File information
Safety rating:60
Behavior list
Basic Information
MD5:bd8e942af1ea204bb7f42936cc923e6d
file type:DLL
Production company:
version:2.1138.0.0---2, 1138, 0, 0
Shell or compiler information:PACKER:UPX 0.80 - 1.24 DLL -> Markus & Laszlo
Subfile information:1007dumpFile / c178ae9d1a45ac6e806cbbe612440e7c / DLL
1007dumpFile / c178ae9d1a45ac6e806cbbe612440e7c / DLL
upx_c_ee339de5dumpFile / 07b431d85b584762162c1ea2a4131f06 / DLL
Key behavior
Behavior description:设置消息钩子
details:C:\WINDOWS\system32\DINPUT8.dll
Process behavior
Behavior description:创建进程
details:ImagePath = C:\WINDOWS\system32\Regsvr32.exe, CmdLine = Regsvr32.exe c:\%temp%\1420033496.125493.exe.dll
Registry behavior
Behavior description:修改注册表
details:\REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Direct3D\MostRecentApplication\Name
Other behavior
Behavior description:创建互斥体
details:DDrawWindowListMutex
__DDrawExclMode__
__DDrawCheckExclMode__
DDrawDriverObjectListMutex
SHIMLIB_LOG_MUTEX
Behavior description:设置消息钩子
details:C:\WINDOWS\system32\DINPUT8.dll
Behavior description:获取系统权限
details:SE_LOAD_DRIVER_PRIVILEGE
SE_DEBUG_PRIVILEGE
Run screenshot
VirSCAN

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号