VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load
5320073f5533b7da2a61ccea68086f7d    Threatbook file behavior analysis report
Virscan.org multi-engine scan report
Basic Information
file name:5320073f5533b7da2a61ccea68086f7d
file type:EXEx86
Submission time:2018-12-04 00:30:10
Threat level:clean
MD5:5320073f5533b7da2a61ccea68086f7d
sha256:50d82863c8577e8f9f4d8a3fbc6f739c0e1c3605a9df61bea27d7ddb8e85cfdd
Document Threat Intelligence IOC Report
No intelligence IOC detected
Intelligence decision system
Undetected intelligence determination system
Network behavior report
domains:0
dns:0
http:0
udp:0
smtp:0
icmp:0
irc:0
hosts:0
Document release report
File release report not detected
File process number report
Process details:共分析了1个进程
Document behavior signature report
Low risk behavior
General behavior:Contains ability to find and load resources of a specific module
Suspicious behavior0
High risk behavior0
Low risk behavior
System Environment Detection:Contains functionality to query system information
Suspicious behavior0
High risk behavior0
Low risk behavior
Static File Characteristics:Found potential IP address or url in binary/memory
Suspicious behavior0
High risk behavior0
Low risk behavior0
Suspicious behavior
System Sensitive Operations:Disables application error messsages (SetErrorMode)
High risk behavior0
Low risk behavior0
Suspicious behavior
Information gathering:Contains functionality to retrieve information about pressed keystrokes
High risk behavior0
Low risk behavior0
Suspicious behavior
High risk behavior0
Low risk behavior0
Suspicious behavior
Reverse Engineering:The binary likely contains encrypted or compressed data indicative of a packer
High risk behavior0
Low risk behavior0
Suspicious behavior0
High risk behavior
Information gathering:Installs a message hook
Static information
Section name:.text
Virtual address:0x00001000
Physical address:0x00000600
Physical size:0x00007000
Section permissions:RW-
Section name:.data
Virtual address:0x00018000
Physical address:0x00007600
Physical size:0x00000200
Section permissions:RW-
Section name:.rsrc
Virtual address:0x0001a000
Physical address:0x00007800
Physical size:0x00009a00
Section permissions:RW-
Section name:.aspack
Virtual address:0x00029000
Physical address:0x00011200
Physical size:0x00005000
Section permissions:RW-
Section name:.adata
Virtual address:0x0002e000
Physical address:0x00016200
Physical size:0x00000000
Section permissions:RW-
import_hash:9cac23d1193aa0061e14633ce53a0d8a
time_stamp:2006-10-18 09:00:23
entry_point_section:.aspack
entry_point_section:.aspack
image_base:0x400000
entry_point:0x29001
name:SERVER
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x0001a7e0
size:0x00009b48
name:RT_ICON
language:LANG_FARSI
filetype:data
sublanguage:SUBLANG_DEFAULT
offset:0x0002d750
size:0x000008a8
name:RT_ICON
language:LANG_FARSI
filetype:data
sublanguage:SUBLANG_DEFAULT
offset:0x0002cea8
size:0x000008a8
name:RT_ICON
language:LANG_FARSI
filetype:data
sublanguage:SUBLANG_DEFAULT
offset:0x0002c600
size:0x000008a8
name:RT_ICON
language:LANG_FARSI
filetype:data
sublanguage:SUBLANG_DEFAULT
offset:0x0002c318
size:0x000002e8
name:RT_ICON
language:LANG_FARSI
filetype:data
sublanguage:SUBLANG_DEFAULT
offset:0x0002ba70
size:0x000008a8
name:RT_ICON
language:LANG_FARSI
filetype:data
sublanguage:SUBLANG_DEFAULT
offset:0x0002b788
size:0x000002e8
name:RT_ICON
language:LANG_FARSI
filetype:data
sublanguage:SUBLANG_DEFAULT
offset:0x0002b4a0
size:0x000002e8
name:RT_ICON
language:LANG_FARSI
filetype:data
sublanguage:SUBLANG_DEFAULT
offset:0x0002b1b8
size:0x000002e8
name:RT_ICON
language:LANG_FARSI
filetype:data
sublanguage:SUBLANG_DEFAULT
offset:0x0002aed0
size:0x000002e8
name:RT_ICON
language:LANG_FARSI
filetype:data
sublanguage:SUBLANG_DEFAULT
offset:0x0002abe8
size:0x000002e8
name:RT_ICON
language:LANG_FARSI
filetype:data
sublanguage:SUBLANG_DEFAULT
offset:0x0002a900
size:0x000002e8
name:RT_ICON
language:LANG_FARSI
filetype:data
sublanguage:SUBLANG_DEFAULT
offset:0x0002a618
size:0x000002e8
name:RT_ICON
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x0002a330
size:0x000002e8
name:RT_GROUP_ICON
language:LANG_NEUTRAL
filetype:MS Windows icon resource - 1 icon
sublanguage:SUBLANG_NEUTRAL
offset:0x0002a31c
size:0x00000014
name:RT_GROUP_ICON
language:LANG_ENGLISH
filetype:MS Windows icon resource - 1 icon
sublanguage:SUBLANG_ENGLISH_US
offset:0x0002a308
size:0x00000014
name:RT_GROUP_ICON
language:LANG_ENGLISH
filetype:MS Windows icon resource - 1 icon
sublanguage:SUBLANG_ENGLISH_US
offset:0x0002a2f4
size:0x00000014
name:RT_GROUP_ICON
language:LANG_ENGLISH
filetype:MS Windows icon resource - 1 icon
sublanguage:SUBLANG_ENGLISH_US
offset:0x0002a2e0
size:0x00000014
name:RT_GROUP_ICON
language:LANG_ENGLISH
filetype:MS Windows icon resource - 1 icon
sublanguage:SUBLANG_ENGLISH_US
offset:0x0002a2cc
size:0x00000014
name:RT_GROUP_ICON
language:LANG_ENGLISH
filetype:MS Windows icon resource - 1 icon
sublanguage:SUBLANG_ENGLISH_US
offset:0x0002a2b8
size:0x00000014
name:RT_GROUP_ICON
language:LANG_ENGLISH
filetype:MS Windows icon resource - 1 icon
sublanguage:SUBLANG_ENGLISH_US
offset:0x0002a2a4
size:0x00000014
name:RT_GROUP_ICON
language:LANG_ENGLISH
filetype:MS Windows icon resource - 1 icon
sublanguage:SUBLANG_ENGLISH_US
offset:0x0002a290
size:0x00000014
name:RT_GROUP_ICON
language:LANG_ENGLISH
filetype:MS Windows icon resource - 1 icon
sublanguage:SUBLANG_ENGLISH_US
offset:0x0002a27c
size:0x00000014
name:RT_GROUP_ICON
language:LANG_ENGLISH
filetype:MS Windows icon resource - 1 icon
sublanguage:SUBLANG_ENGLISH_US
offset:0x0002a268
size:0x00000014
name:RT_GROUP_ICON
language:LANG_ENGLISH
filetype:MS Windows icon resource - 1 icon
sublanguage:SUBLANG_ENGLISH_US
offset:0x0002a254
size:0x00000014
name:RT_GROUP_ICON
language:LANG_ENGLISH
filetype:MS Windows icon resource - 1 icon
sublanguage:SUBLANG_ENGLISH_US
offset:0x0002a240
size:0x00000014
name:RT_GROUP_ICON
language:LANG_ENGLISH
filetype:MS Windows icon resource - 1 icon
sublanguage:SUBLANG_ENGLISH_US
offset:0x0002a22c
size:0x00000014
name:RT_VERSION
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x0002a00c
size:0x00000220

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号