Server Load
YX.Setup.exe    Threatbook file behavior analysis report
Virscan.org multi-engine scan report
Basic Information
file name:YX.Setup.exe
file type:EXEx86
Submission time:2018-10-11 23:30:38
Threat level:clean
MD5:88fa1e6bb3d80d9c3df9009a9fc22704
sha256:040d4b7d62ada0b06c320959bc0d72021c497c401ec7413dc2c74eefee525acb
Document Threat Intelligence IOC Report
No intelligence IOC detected
Intelligence decision system
Abnormal flow detection system:0
Hunting system:0
DGA domain name recognition system:0
Network behavior report
domains:0
dns:0
http:0
Document release report
file name:WER73AA.tmp
file type:empty
file size:0
MD5:d41d8cd98f00b204e9800998ecf8427e
File process number report
Process details:0
Document behavior signature report
api:IsDebuggerPresent
category:system
type:call
api:IsDebuggerPresent
category:system
type:call
api:OpenSCManagerW
category:services
type:call
api:GetKeyboardState
category:system
type:call
api:GetKeyboardState
category:system
type:call
api:GetKeyboardState
category:system
type:call
api:GetKeyboardState
category:system
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:FindFirstFileExW
category:file
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:GetSystemInfo
category:system
type:call
api:NtAllocateVirtualMemory
category:process
type:call
api:NtAllocateVirtualMemory
category:process
type:call
api:NtAllocateVirtualMemory
category:process
type:call
api:NtAllocateVirtualMemory
category:process
type:call
api:NtAllocateVirtualMemory
category:process
type:call
Static information
PE section table information
Section name:.text
Virtual address:0x00002000
Physical address:0x00000200
Physical size:0x00136e00
Section permissions:R-E
Section name:.rsrc
Virtual address:0x0013a000
Physical address:0x00137000
Physical size:0x00005600
Section permissions:R--
Section name:.reloc
Virtual address:0x00140000
Physical address:0x0013c600
Physical size:0x001a6600
Section permissions:R--
PE basic information
import_hash:f34d5f2d4577ed6d9ceec516c1f5a744
time_stamp:2018-03-16 14:47:08
entry_point_section:.text
entry_point_section:.text
image_base:0x400000
entry_point:0x138c3e
PE resource information
name:RT_ICON
language:LANG_NEUTRAL
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_NEUTRAL
offset:0x0013a160
size:0x00000468
name:RT_ICON
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x0013a5d8
size:0x000010a8
name:RT_ICON
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x0013b690
size:0x00000988
name:RT_ICON
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x0013c028
size:0x000025a8
name:RT_GROUP_ICON
language:LANG_NEUTRAL
filetype:MS Windows icon resource - 4 icons, 16x16, 256-colors
sublanguage:SUBLANG_NEUTRAL
offset:0x0013e5e0
size:0x0000003e
name:RT_VERSION
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x0013e62e
size:0x00000334
name:RT_MANIFEST
language:LANG_NEUTRAL
filetype:XML 1.0 document, UTF-8 Unicode (with BOM) text, with CRLF line terminators
sublanguage:SUBLANG_NEUTRAL
offset:0x0013e972
size:0x00000af4

About VirSCAN | Privacy Policy | Contact us | link | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

京公网安备 11010802020746号