VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load
红色警戒2修改大师2.90正式版.exe    Threatbook file behavior analysis report
Virscan.org multi-engine scan report
Behavior analysis report:         Habo file analysis
Basic Information
file name:红色警戒2修改大师2.90正式版.exe
file type:EXEx86
Submission time:2018-09-04 20:03:19
Threat level:malicious
MD5:636a8874adf1b88da63da21ddc82112a
sha256:0a689341457d6fcf36e5527dd21129f050152e0a442a3f71852685086300732d
Document Threat Intelligence IOC Report
No intelligence IOC detected
Intelligence decision system
Undetected intelligence determination system
Network behavior report
domains:0
dns:0
http:0
udp:0
smtp:0
icmp:0
irc:0
hosts:0
Document release report
File release report not detected
File process number report
Process details:共分析了1个进程
Document behavior signature report
No file behavior report detected
Static information
Section name:.text
Virtual address:0x00001000
Physical address:0x00000000
Physical size:0x00000000
Section permissions:R-E
Section name:.rdata
Virtual address:0x000a0000
Physical address:0x00000000
Physical size:0x00000000
Section permissions:R--
Section name:.data
Virtual address:0x0021e000
Physical address:0x00000000
Physical size:0x00000000
Section permissions:RW-
Section name:.lwl0
Virtual address:0x00256000
Physical address:0x00000000
Physical size:0x00000000
Section permissions:RWE
Section name:.tls
Virtual address:0x00909000
Physical address:0x00001000
Physical size:0x00001000
Section permissions:RW-
Section name:.lwl1
Virtual address:0x0090a000
Physical address:0x00002000
Physical size:0x00818000
Section permissions:RWE
Section name:.rsrc
Virtual address:0x01122000
Physical address:0x0081a000
Physical size:0x00002000
Section permissions:R--
import_hash:f252629e3519ca3b9647b5339b06db49
time_stamp:2014-07-27 23:14:50
entry_point_section:.lwl1
entry_point_section:.lwl1
image_base:0x400000
entry_point:0xfa9b11
name:RT_ICON
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x01123024
size:0x000008a8
name:RT_ICON
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x01123024
size:0x000008a8
name:RT_ICON
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x01123024
size:0x000008a8
name:RT_ICON
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x01123024
size:0x000008a8
name:RT_ICON
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x01123024
size:0x000008a8
name:RT_ICON
language:LANG_NEUTRAL
filetype:data
sublanguage:SUBLANG_NEUTRAL
offset:0x01123024
size:0x000008a8
name:RT_GROUP_ICON
language:LANG_CHINESE
filetype:MS Windows icon resource - 1 icon
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x01123920
size:0x00000014
name:RT_GROUP_ICON
language:LANG_CHINESE
filetype:MS Windows icon resource - 1 icon
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x01123920
size:0x00000014
name:RT_GROUP_ICON
language:LANG_CHINESE
filetype:MS Windows icon resource - 1 icon
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x01123920
size:0x00000014
name:RT_VERSION
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x01123934
size:0x00000298
name:RT_MANIFEST
language:LANG_NEUTRAL
filetype:XML document text
sublanguage:SUBLANG_NEUTRAL
offset:0x01123bcc
size:0x0000036f

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号