VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load
zlib1.dll    Threatbook file behavior analysis report
Virscan.org multi-engine scan report
Behavior analysis report:         Habo file analysis
Basic Information
file name:zlib1.dll
file type:DLLx86
Threat level:suspicious
MD5:05c76375eae03d216f7738b392361c1a
sha256:8d44225d65f7f6c51844cdb1c3e048be3db5e71993dc05772f5a9d9a5ded0bc9
Document Threat Intelligence IOC Report
No intelligence IOC detected
Intelligence decision system
Undetected intelligence determination system
Network behavior report
domains:0
dns:0
http:0
udp:0
smtp:0
icmp:0
irc:0
hosts:0
Document release report
File release report not detected
File process number report
Process details:共分析了1个进程
Document behavior signature report
Low risk behavior
Static File Characteristics:The executable contains unknown PE section names indicative of a packer (could be a false positive)
Suspicious behavior0
High risk behavior0
Low risk behavior
General behavior:One or more processes crashed
Suspicious behavior0
High risk behavior0
Static information
Section name:.Asuna
Virtual address:0x00001000
Physical address:0x00000400
Physical size:0x00002e00
Section permissions:RWE
Section name:.data
Virtual address:0x00004000
Physical address:0x00003200
Physical size:0x00000200
Section permissions:RW-
Section name:.idata
Virtual address:0x00006000
Physical address:0x00003400
Physical size:0x00000400
Section permissions:R--
Section name:.reloc
Virtual address:0x00007000
Physical address:0x00003800
Physical size:0x00000200
Section permissions:R--
import_hash:7275d3a8864503fcb768ff37ce13d49a
time_stamp:2014-09-23 16:49:59
entry_point_section:.Asuna
entry_point_section:.Asuna
image_base:0x10000000
entry_point:0x2ae0
PE resource information0

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Translated by Keith Miller, United States
中国反网络病毒联盟
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号