VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load
Server.exe    Threatbook file behavior analysis report
Virscan.org multi-engine scan report
Basic Information
file name:Server.exe
file type:EXEx86
Submission time:2019-06-12 22:30:49
Threat level:malicious
MD5:aa24f004ec3790899b89f9df68703c48
sha256:24bc41e1f44e1d9d8082749f246299edd6b700443f36ddd3558045da41b6901d
Document Threat Intelligence IOC Report
No intelligence IOC detected
Intelligence decision system
Undetected intelligence determination system
Network behavior report
domains:0
dns:0
http:0
udp:0
smtp:0
icmp:0
irc:0
hosts:0
Document release report
File release report not detected
File process number report
Process details:共分析了2个进程
Document behavior signature report
No file behavior report detected
Static information
Section name:CODE
Virtual address:0x00001000
Physical address:0x00000400
Physical size:0x0009b400
Section permissions:R-E
Section name:DATA
Virtual address:0x0009d000
Physical address:0x0009b800
Physical size:0x00004c00
Section permissions:RW-
Section name:BSS
Virtual address:0x000a2000
Physical address:0x000a0400
Physical size:0x00000000
Section permissions:RW-
Section name:.idata
Virtual address:0x003a4000
Physical address:0x000a0400
Physical size:0x00003600
Section permissions:RW-
Section name:.tls
Virtual address:0x003a8000
Physical address:0x000a3a00
Physical size:0x00000000
Section permissions:RW-
Section name:.rdata
Virtual address:0x003a9000
Physical address:0x000a3a00
Physical size:0x00000200
Section permissions:R--
Section name:.reloc
Virtual address:0x003aa000
Physical address:0x000a3c00
Physical size:0x00009400
Section permissions:R--
Section name:.rsrc
Virtual address:0x003b4000
Physical address:0x000ad000
Physical size:0x00026e00
Section permissions:R--
import_hash:5ca556b3de158b709c6112374df5d4d7
time_stamp:1992-06-20 06:22:17
entry_point_section:CODE
entry_point_section:CODE
image_base:0x400000
entry_point:0x9bd5c
name:RT_CURSOR
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003b4f64
size:0x00000134
name:RT_CURSOR
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003b5098
size:0x00000134
name:RT_CURSOR
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003b51cc
size:0x00000134
name:RT_CURSOR
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003b5300
size:0x00000134
name:RT_CURSOR
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003b5434
size:0x00000134
name:RT_CURSOR
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003b5568
size:0x00000134
name:RT_CURSOR
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003b569c
size:0x00000134
name:RT_BITMAP
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003b57d0
size:0x000001d0
name:RT_BITMAP
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003b59a0
size:0x000001e4
name:RT_BITMAP
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003b5b84
size:0x000001d0
name:RT_BITMAP
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003b5d54
size:0x000001d0
name:RT_BITMAP
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003b5f24
size:0x000001d0
name:RT_BITMAP
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003b60f4
size:0x000001d0
name:RT_BITMAP
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003b62c4
size:0x000001d0
name:RT_BITMAP
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003b6494
size:0x000001d0
name:RT_BITMAP
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003b6664
size:0x000001d0
name:RT_BITMAP
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003b6834
size:0x000001d0
name:RT_BITMAP
language:LANG_NEUTRAL
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_NEUTRAL
offset:0x003b6a04
size:0x000000e8
name:RT_ICON
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x003b6aec
size:0x00000ea8
name:RT_ICON
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x003b7994
size:0x000008a8
name:RT_ICON
language:LANG_ENGLISH
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_ENGLISH_US
offset:0x003b823c
size:0x00000568
name:RT_ICON
language:LANG_ENGLISH
filetype:PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
sublanguage:SUBLANG_ENGLISH_US
offset:0x003b87a4
size:0x000073d0
name:RT_ICON
language:LANG_ENGLISH
filetype:PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
sublanguage:SUBLANG_ENGLISH_US
offset:0x003bfb74
size:0x000073d0
name:RT_ICON
language:LANG_ENGLISH
filetype:FoxPro FPT, blocks size 0, next free block index 671088640
sublanguage:SUBLANG_ENGLISH_US
offset:0x003c6f44
size:0x00004228
name:RT_ICON
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x003cb16c
size:0x000025a8
name:RT_ICON
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x003cd714
size:0x00001a68
name:RT_ICON
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x003cf17c
size:0x000010a8
name:RT_ICON
language:LANG_ENGLISH
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_ENGLISH_US
offset:0x003d0224
size:0x00000468
name:RT_ICON
language:LANG_ENGLISH
filetype:dBase IV DBT of `.DBF, blocks size 48, next free block index 40, 1st item \"\251\317\"
sublanguage:SUBLANG_ENGLISH_US
offset:0x003d068c
size:0x00000ea8
name:RT_ICON
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x003d1534
size:0x000008a8
name:RT_ICON
language:LANG_ENGLISH
filetype:PNG image data, 256 x 256, 8-bit colormap, non-interlaced
sublanguage:SUBLANG_ENGLISH_US
offset:0x003d1ddc
size:0x000007c8
name:RT_ICON
language:LANG_ENGLISH
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_ENGLISH_US
offset:0x003d25a4
size:0x00000568
name:RT_ICON
language:LANG_ENGLISH
filetype:PNG image data, 256 x 256, 8-bit colormap, non-interlaced
sublanguage:SUBLANG_ENGLISH_US
offset:0x003d2b0c
size:0x000007c8
name:RT_ICON
language:LANG_ENGLISH
filetype:dBase IV DBT of `.DBF, blocks size 48, next free block index 40, 1st item \"\310\310\310\377\310\310\310\377\310\310\310\377\310\310\310\377\310\310\310\377\310\310\310\377\310\310\310\377\310\310\310\377\310\310\310\377\310\310\310\377\310\310\310\377\310\310\310\377\310\310\310\377\310\310\310\377\310\310\310\377\310\310\310\"
sublanguage:SUBLANG_ENGLISH_US
offset:0x003d32d4
size:0x000025a8
name:RT_ICON
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x003d587c
size:0x000010a8
name:RT_ICON
language:LANG_ENGLISH
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_ENGLISH_US
offset:0x003d6924
size:0x00000468
name:RT_DIALOG
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003d6d8c
size:0x00000052
name:RT_STRING
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003d6de0
size:0x000001f8
name:RT_STRING
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003d6fd8
size:0x000001f0
name:RT_STRING
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003d71c8
size:0x000001c0
name:RT_STRING
language:LANG_NEUTRAL
filetype:Hitachi SH big-endian COFF object, not stripped
sublanguage:SUBLANG_NEUTRAL
offset:0x003d7388
size:0x000000dc
name:RT_STRING
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003d7464
size:0x000003e8
name:RT_STRING
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003d784c
size:0x000001a4
name:RT_STRING
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003d79f0
size:0x000000e8
name:RT_STRING
language:LANG_NEUTRAL
filetype:Hitachi SH big-endian COFF object, not stripped
sublanguage:SUBLANG_NEUTRAL
offset:0x003d7ad8
size:0x00000128
name:RT_STRING
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003d7c00
size:0x000002c8
name:RT_STRING
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003d7ec8
size:0x00000414
name:RT_STRING
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003d82dc
size:0x00000384
name:RT_STRING
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003d8660
size:0x0000038c
name:RT_STRING
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x003d89ec
size:0x0000042c

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号