VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load
繁星场控助手 V4.3.6.2.exe    Threatbook file behavior analysis report
Virscan.org multi-engine scan report
Behavior analysis report:         Habo file analysis
Basic Information
file name:繁星场控助手 V4.3.6.2.exe
file type:EXEx86
Submission time:2019-02-28 20:01:35
Threat level:malicious
MD5:f2b6333dc1d207234ed2902ae540dd20
sha256:6ef5fa7902dc7104af34d6e58f5c55949472a04ec2b6be4cf37057c21e8961fb
Document Threat Intelligence IOC Report
No intelligence IOC detected
Intelligence decision system
Undetected intelligence determination system
Network behavior report
No behavioral characteristics detected
Document release report
file name:6ef5fa7902dc7104af34d6e58f5c55949472a04ec2b6be4cf37057c21e8961fbmgr.exe
file type:PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed
file size:108032
MD5:dfb5daabb95dcfad1a5faf9ab1437076
file name:6ef5fa7902dc7104af34d6e58f5c55949472a04ec2b6be4cf37057c21e8961fbSrv.exe
file type:PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed
file size:56320
MD5:ff5e1f27193ce51eec318714ef038bef
file name:pxAE7F.tmp
file type:empty
file size:0
MD5:d41d8cd98f00b204e9800998ecf8427e
file name:Lock.lock
file type:ASCII text, with no line terminators
file size:74
MD5:04e216c259a6b61e6b6ae3fb24168797
File process number report
Process details:共分析了4个进程
Document behavior signature report
No file behavior report detected
Static information
Section name:.text
Virtual address:0x00001000
Physical address:0x00001000
Physical size:0x00164000
Section permissions:R-E
Section name:.rdata
Virtual address:0x00165000
Physical address:0x00165000
Physical size:0x00227000
Section permissions:R--
Section name:.data
Virtual address:0x0038c000
Physical address:0x0038c000
Physical size:0x00024000
Section permissions:RW-
Section name:.rsrc
Virtual address:0x0043e000
Physical address:0x003b0000
Physical size:0x00018000
Section permissions:R--
Section name:.rmnet
Virtual address:0x00456000
Physical address:0x003c8000
Physical size:0x0000f000
Section permissions:RWE
Section name:.text
Virtual address:0x00465000
Physical address:0x003d7000
Physical size:0x0001b000
Section permissions:RWE
import_hash:9b04d3a3f08270d4786b588352befc67
time_stamp:2019-02-28 18:46:10
entry_point_section:.text
entry_point_section:.text
image_base:0x400000
entry_point:0x465000
name:TEXTINCLUDE
language:LANG_CHINESE
filetype:ASCII text, with no line terminators
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0043f3b0
size:0x0000000b
name:TEXTINCLUDE
language:LANG_CHINESE
filetype:C source, ASCII text, with CRLF line terminators
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0043f3bc
size:0x00000016
name:TEXTINCLUDE
language:LANG_CHINESE
filetype:C source, ASCII text, with CRLF line terminators
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0043f3d4
size:0x00000151
name:WAVE
language:LANG_CHINESE
filetype:RIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, stereo 22050 Hz
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0043f528
size:0x00001448
name:RT_CURSOR
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00440970
size:0x00000134
name:RT_CURSOR
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00440aa4
size:0x00000134
name:RT_CURSOR
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00440bd8
size:0x00000134
name:RT_CURSOR
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00440d0c
size:0x000000b4
name:RT_CURSOR
language:LANG_CHINESE
filetype:AmigaOS bitmap font
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00440dc0
size:0x00000134
name:RT_CURSOR
language:LANG_CHINESE
filetype:AmigaOS bitmap font
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00440ef4
size:0x00000134
name:RT_CURSOR
language:LANG_ITALIAN
filetype:data
sublanguage:SUBLANG_ITALIAN
offset:0x00441028
size:0x00000134
name:RT_CURSOR
language:LANG_ITALIAN
filetype:data
sublanguage:SUBLANG_ITALIAN
offset:0x0044115c
size:0x00000134
name:RT_CURSOR
language:LANG_ITALIAN
filetype:data
sublanguage:SUBLANG_ITALIAN
offset:0x00441290
size:0x00000134
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x004413c4
size:0x00001002
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x004423c8
size:0x00000160
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00442528
size:0x00001000
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00443528
size:0x00000160
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00443688
size:0x000013a8
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00444a30
size:0x0000094e
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00445380
size:0x00001272
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x004465f4
size:0x0000094e
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00446f44
size:0x0000188a
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x004487d0
size:0x000010aa
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0044987c
size:0x0000212a
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0044b9a8
size:0x00001e2a
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0044d7d4
size:0x0000016c
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0044d940
size:0x00000248
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0044db88
size:0x00000144
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0044dccc
size:0x00000158
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0044de24
size:0x00000158
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0044df7c
size:0x00000158
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0044e0d4
size:0x00000158
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0044e22c
size:0x00000158
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0044e384
size:0x00000158
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0044e4dc
size:0x00000158
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0044e634
size:0x00000158
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0044e78c
size:0x000005e4
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0044ed70
size:0x000000b8
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0044ee28
size:0x0000016c
name:RT_BITMAP
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0044ef94
size:0x00000144
name:RT_ICON
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0044f0d8
size:0x000002e8
name:RT_ICON
language:LANG_CHINESE
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0044f3c0
size:0x00000128
name:RT_ICON
language:LANG_NEUTRAL
filetype:FoxPro FPT, blocks size 0, next free block index 671088640
sublanguage:SUBLANG_NEUTRAL
offset:0x0044f4e8
size:0x00004228
name:RT_MENU
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00453710
size:0x0000000c
name:RT_MENU
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x0045371c
size:0x00000284
name:RT_DIALOG
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x004539a0
size:0x00000098
name:RT_DIALOG
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00453a38
size:0x0000017a
name:RT_DIALOG
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00453bb4
size:0x000000fa
name:RT_DIALOG
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00453cb0
size:0x0000007a
name:RT_DIALOG
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x00453d2c
size:0x0000007a

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号