VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load
新的46.exe    Threatbook file behavior analysis report
Virscan.org multi-engine scan report
Basic Information
file name:新的46.exe
file type:EXEx86
Threat level:clean
MD5:dfb347c29ad901e693dfbd86d2f8eb21
sha256:930e8edff5aa67933905c4874ae2e2715a983d7ac97d4999243907230f2465dd
Document Threat Intelligence IOC Report
No intelligence IOC detected
Intelligence decision system
Undetected intelligence determination system
Network behavior report
domains:0
dns:0
http:0
udp:0
smtp:0
icmp:0
irc:0
hosts:0
Document release report
file name:b2e3bb696eb7d327_Hao
file type:ASCII text, with CRLF line terminators
file size:271
MD5:be235bab5e111bdc069d452c4b06bc9b
File process number report
Process details:共分析了1个进程
Document behavior signature report
No file behavior report detected
Static information
Section name:.text
Virtual address:0x00001000
Physical address:0x00000400
Physical size:0x0015bc00
Section permissions:R-E
Section name:.rdata
Virtual address:0x0015d000
Physical address:0x0015c000
Physical size:0x00053400
Section permissions:R--
Section name:.data
Virtual address:0x001b1000
Physical address:0x001af400
Physical size:0x0015ce00
Section permissions:RW-
Section name:.rsrc
Virtual address:0x00316000
Physical address:0x0030c200
Physical size:0x00052600
Section permissions:R--
Section name:.reloc
Virtual address:0x00369000
Physical address:0x0035e800
Physical size:0x0001e800
Section permissions:R--
import_hash:cc12c161c0fc9e07a7f41cd40d002272
time_stamp:2019-07-09 02:54:02
entry_point_section:.text
entry_point_section:.text
image_base:0x400000
entry_point:0x1314d7
name:XML
language:LANG_CHINESE
filetype:ASCII text, with CRLF line terminators
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00316358
size:0x00000dd5
name:ZIPRES
language:LANG_CHINESE
filetype:Zip archive data, at least v1.0 to extract
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00317130
size:0x0004f896
name:RT_ICON
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_DEFAULT
offset:0x003669c8
size:0x000002e8
name:RT_ICON
language:LANG_NEUTRAL
filetype:dBase IV DBT of `.DBF, blocks size 48, next free block index 40, 1st item \"f\314\"
sublanguage:SUBLANG_DEFAULT
offset:0x00366cb0
size:0x00000ea8
name:RT_ICON
language:LANG_NEUTRAL
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_DEFAULT
offset:0x00367b58
size:0x00000128
name:RT_MENU
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00367c80
size:0x00000050
name:RT_DIALOG
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x00367cd0
size:0x000000a0
name:RT_DIALOG
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x00367d70
size:0x0000010c
name:RT_DIALOG
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x00367e7c
size:0x000001ee
name:RT_DIALOG
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x0036806c
size:0x000000e4
name:RT_DIALOG
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x00368150
size:0x000000da
name:RT_GROUP_ICON
language:LANG_NEUTRAL
filetype:MS Windows icon resource - 3 icons, 32x32, 8-colors
sublanguage:SUBLANG_DEFAULT
offset:0x0036822c
size:0x00000030
name:RT_VERSION
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0036825c
size:0x00000254

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号