VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load
server.exe    Threatbook file behavior analysis report
Virscan.org multi-engine scan report
Behavior analysis report:         Habo file analysis
Basic Information
file name:server.exe
file type:EXEx86
Submission time:2018-10-04 17:00:22
Threat level:malicious
MD5:f78d7e7b58642e0ed091db27f44d0c91
sha256:e5e7c03676dfc981dec26fbc3dc620d01c127099ab061c63747983e2a938e34c
Document Threat Intelligence IOC Report
No intelligence IOC detected
Intelligence decision system
Undetected intelligence determination system
Network behavior report
domains:0
dns:0
http:0
udp:0
smtp:0
icmp:0
irc:0
hosts:0
Document release report
File release report not detected
File process number report
Process details:共分析了1个进程
Document behavior signature report
Low risk behavior0
Suspicious behavior0
High risk behavior
Information gathering:Installs a message hook
Static information
Section name:.text
Virtual address:0x00001000
Physical address:0x00001000
Physical size:0x0004c000
Section permissions:R-E
Section name:.rdata
Virtual address:0x0004d000
Physical address:0x0004d000
Physical size:0x00015000
Section permissions:R--
Section name:.data
Virtual address:0x00062000
Physical address:0x00062000
Physical size:0x00032000
Section permissions:RW-
Section name:.rsrc
Virtual address:0x00098000
Physical address:0x00094000
Physical size:0x0004a000
Section permissions:R--
import_hash:58a16375467f7abd7b166cd8acff9833
time_stamp:2018-08-15 11:46:11
entry_point_section:.text
entry_point_section:.text
image_base:0x400000
entry_point:0x36cc9
name:RT_ICON
language:LANG_CHINESE
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00098970
size:0x00000128
name:RT_ICON
language:LANG_CHINESE
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00098a98
size:0x00000568
name:RT_ICON
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00099000
size:0x00042028
name:RT_ICON
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000db028
size:0x000025a8
name:RT_ICON
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000dd5d0
size:0x000010a8
name:RT_ICON
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000de678
size:0x00000988
name:RT_ICON
language:LANG_CHINESE
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000df000
size:0x00000468
name:RT_DIALOG
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000df468
size:0x000000d6
name:RT_DIALOG
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000df540
size:0x0000002c
name:RT_DIALOG
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000df56c
size:0x0000004c
name:RT_DIALOG
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000df5b8
size:0x000000e2
name:RT_DIALOG
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000df69c
size:0x00000166
name:RT_DIALOG
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000df804
size:0x00000142
name:RT_DIALOG
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000df948
size:0x00000034
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000df97c
size:0x0000014c
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000dfac8
size:0x000003a4
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000dfe6c
size:0x00000032
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000dfea0
size:0x000000e6
name:RT_STRING
language:LANG_CHINESE
filetype:Hitachi SH big-endian COFF executable, stripped
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000dff88
size:0x000000c0
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e0048
size:0x00000136
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e0180
size:0x000000d0
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e0250
size:0x00000060
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e02b0
size:0x00000054
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e0304
size:0x0000003a
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e0340
size:0x00000058
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e0398
size:0x000000a4
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e043c
size:0x00000048
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e0484
size:0x0000006e
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e04f4
size:0x0000002c
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e0520
size:0x00000082
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e05a4
size:0x000000f2
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e0698
size:0x000001d0
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e0868
size:0x00000164
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e09cc
size:0x00000132
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e0b00
size:0x00000050
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e0b50
size:0x00000040
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e0b90
size:0x0000006a
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e0bfc
size:0x000001d6
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e0dd4
size:0x00000110
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e0ee4
size:0x00000024
name:RT_STRING
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e0f08
size:0x00000030
name:RT_ACCELERATOR
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e0f38
size:0x00000070
name:RT_RCDATA
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x000e0fa8
size:0x00000080
name:RT_GROUP_ICON
language:LANG_CHINESE
filetype:MS Windows icon resource - 7 icons, 16x16, 8-colors
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e1028
size:0x00000068
name:RT_VERSION
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000e1090
size:0x000002bc
name:RT_MANIFEST
language:LANG_ENGLISH
filetype:ASCII text, with CRLF line terminators
sublanguage:SUBLANG_ENGLISH_US
offset:0x000e134c
size:0x0000026e

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号