VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, VirSCAN can scan compressed files with password 'infected' or 'virus'.

Language
Server load
Server Load
SkinH_EL.dll    Threatbook file behavior analysis report
Virscan.org multi-engine scan report
Basic Information
file name:SkinH_EL.dll
file type:DLLx86
Submission time:2019-01-12 23:30:12
Threat level:clean
MD5:147127382e001f495d1842ee7a9e7912
sha256:edf679c02ea2e170e67ab20dfc18558e2bfb4ee5d59eceeaea4b1ad1a626c3cc
Document Threat Intelligence IOC Report
No intelligence IOC detected
Intelligence decision system
Undetected intelligence determination system
Network behavior report
domains:0
dns:0
http:0
Document release report
File release report not detected
File process number report
Process details:0
            
Document behavior signature report
Low risk behavior
General behavior:Contains ability to find and load resources of a specific module
Low risk behavior
System Environment Detection:Contains functionality to query system information
Low risk behavior
General behavior:One or more processes crashed
可疑行为
Reverse Engineering:Checks if process is being debugged by a debugger
可疑行为
Reverse Engineering:The binary likely contains encrypted or compressed data indicative of a packer
可疑行为
Reverse Engineering:The executable is compressed using UPX
Static information
PE section table information
Section name:UPX0
Virtual address:0x00001000
Physical address:0x00000400
Physical size:0x00000000
Section permissions:RWE
Section name:UPX1
Virtual address:0x00027000
Physical address:0x00000400
Physical size:0x00014c00
Section permissions:RWE
Section name:.rsrc
Virtual address:0x0003c000
Physical address:0x00015000
Physical size:0x00000a00
Section permissions:RW-
PE basic information
import_hash:deba71fcd4e68e93af678f2a5e291977
time_stamp:2009-09-15 10:48:00
entry_point_section:UPX1
entry_point_section:UPX1
image_base:0x10000000
entry_point:0x3af70
PE resource information
name:RT_VERSION
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0003c05c
size:0x000003ec

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号