VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

File information
Safety rating:27
Behavior list
Basic Information
MD5:1fac587ac00477ef0e6df1f9a4804c20
file type:EXE
Production company:
version:
Shell or compiler information:PACKER:UPX 0.89.6 - 1.02 / 1.05 - 1.24 -> Markus & Laszlo [Overlay]
Subfile information:upx_c_9ee863a6dumpFile / fb50a06ff4f2657d0bce24c2f6d0807c / EXE
Key behavior
Behavior description:修改注册表_启动项
details:\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\winxcfg.exe
Process behavior
Behavior description:创建本地线程
details:N/A
Behavior description:进程退出
details:N/A
Behavior description:枚举进程
details:N/A
File behavior
Behavior description:创建文件
details:C:\WINDOWS\system32\winxcfg.exe
C:\WINDOWS\system32\macromd\Another bang bus victim forced rape sex cum.mpg.exe
C:\WINDOWS\system32\macromd\yahoo cracker.exe
C:\WINDOWS\system32\macromd\Website Hacker.exe
C:\WINDOWS\system32\macromd\Counter Strike CD Keygen.exe
C:\WINDOWS\system32\macromd\hotmail account sniffer.exe
C:\WINDOWS\system32\macromd\wife in kitchen preparing hot pussy for hubby"s dinner.mpg.pif
C:\WINDOWS\system32\macromd\career girls playing with their snatch after work.mpg.pif
C:\WINDOWS\system32\macromd\horny housewife looking for some action.mpg.pif
C:\WINDOWS\system32\macromd\sexy pink pussy girl taking it off.mpg.pif
C:\WINDOWS\system32\macromd\head rooster pimping hot little tender ass chickens.mpg.pif
C:\WINDOWS\system32\macromd\extremely fine hoine with incredible sweet twat.mpg.pif
C:\WINDOWS\system32\macromd\two teen lesbians with dildo having fun.mpg.pif
C:\WINDOWS\system32\macromd\gangbang tryout with young slut and two studs.mpg.pif
C:\WINDOWS\system32\macromd\tiny girl opening hole in crazy wish of cock.mpg.pif
Behavior description:创建可执行文件
details:C:\WINDOWS\system32\winxcfg.exe
C:\WINDOWS\system32\macromd\Another bang bus victim forced rape sex cum.mpg.exe
C:\WINDOWS\system32\macromd\yahoo cracker.exe
C:\WINDOWS\system32\macromd\Website Hacker.exe
C:\WINDOWS\system32\macromd\Counter Strike CD Keygen.exe
C:\WINDOWS\system32\macromd\hotmail account sniffer.exe
C:\WINDOWS\system32\macromd\wife in kitchen preparing hot pussy for hubby"s dinner.mpg.pif
C:\WINDOWS\system32\macromd\career girls playing with their snatch after work.mpg.pif
C:\WINDOWS\system32\macromd\horny housewife looking for some action.mpg.pif
C:\WINDOWS\system32\macromd\sexy pink pussy girl taking it off.mpg.pif
C:\WINDOWS\system32\macromd\head rooster pimping hot little tender ass chickens.mpg.pif
C:\WINDOWS\system32\macromd\extremely fine hoine with incredible sweet twat.mpg.pif
C:\WINDOWS\system32\macromd\two teen lesbians with dildo having fun.mpg.pif
C:\WINDOWS\system32\macromd\gangbang tryout with young slut and two studs.mpg.pif
C:\WINDOWS\system32\macromd\tiny girl opening hole in crazy wish of cock.mpg.pif
Registry behavior
Behavior description:修改注册表
details:\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Version
Behavior description:修改注册表_启动项
details:\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\winxcfg.exe
Other behavior
Behavior description:查找指定窗口
details:NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
Behavior description:窗口信息
details:Pid = 284, Hwnd=0x202a6, Text = 确定, ClassName = Button.
Pid = 284, Hwnd=0x202a8, Text = File probably corrupted or it have incomplete length, ClassName = Static.
Pid = 284, Hwnd=0x202a2, Text = Error, ClassName = #32770.
Behavior description:可执行文件MD5
details:C:\WINDOWS\system32\winxcfg.exe ---> bf30213b41d81b53061306ebaf8c16ee
C:\WINDOWS\system32\macromd\Another bang bus victim forced rape sex cum.mpg.exe ---> 7db293b1d502449e3dcbc30190d247d1
C:\WINDOWS\system32\macromd\yahoo cracker.exe ---> b47730cce1f7e4830395e875b3b6f2eb
C:\WINDOWS\system32\macromd\Website Hacker.exe ---> 385754b5bd9c4124d0729b16525d4609
C:\WINDOWS\system32\macromd\Counter Strike CD Keygen.exe ---> 73534c0b256ac06beacbeff99bb00be5
C:\WINDOWS\system32\macromd\hotmail account sniffer.exe ---> cbee40e6b0b4586870bbfdb8de9fe9d3
C:\WINDOWS\system32\macromd\wife in kitchen preparing hot pussy for hubby"s dinner.mpg.pif ---> 89897657240d9c717391fce3566e9480
C:\WINDOWS\system32\macromd\career girls playing with their snatch after work.mpg.pif ---> dddebe15384512cf7ec1f5a655420600
C:\WINDOWS\system32\macromd\horny housewife looking for some action.mpg.pif ---> fa432a9a9415aa3687d528cc64b1fc0c
C:\WINDOWS\system32\macromd\sexy pink pussy girl taking it off.mpg.pif ---> 330fbd98e34e1aa097546601792f6119
C:\WINDOWS\system32\macromd\head rooster pimping hot little tender ass chickens.mpg.pif ---> 6567a953eca21f9c9a76001f14f2ddbe
C:\WINDOWS\system32\macromd\extremely fine hoine with incredible sweet twat.mpg.pif ---> d9a5bd6a2124c8d96e803bf2faf79952
C:\WINDOWS\system32\macromd\two teen lesbians with dildo having fun.mpg.pif ---> 9ae99dd686bb49acc4400342844bdd6e
C:\WINDOWS\system32\macromd\gangbang tryout with young slut and two studs.mpg.pif ---> 975df540f82e63639feb472751450ba8
C:\WINDOWS\system32\macromd\tiny girl opening hole in crazy wish of cock.mpg.pif ---> d2881ddb80c4368cf8133a3d980c472e
Behavior description:创建互斥体
details:CTF.LBES.MutexDefaultS-*
CTF.Compart.MutexDefaultS-*
CTF.Asm.MutexDefaultS-*
CTF.Layouts.MutexDefaultS-*
CTF.TMD.MutexDefaultS-*
CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
MSCTF.Shared.MUTEX.ELH
Behavior description:可执行文件签名信息
details:C:\WINDOWS\system32\winxcfg.exe(签名验证: 未通过)
C:\WINDOWS\system32\macromd\Another bang bus victim forced rape sex cum.mpg.exe(签名验证: 未通过)
C:\WINDOWS\system32\macromd\yahoo cracker.exe(签名验证: 未通过)
C:\WINDOWS\system32\macromd\Website Hacker.exe(签名验证: 未通过)
C:\WINDOWS\system32\macromd\Counter Strike CD Keygen.exe(签名验证: 未通过)
C:\WINDOWS\system32\macromd\hotmail account sniffer.exe(签名验证: 未通过)
C:\WINDOWS\system32\macromd\wife in kitchen preparing hot pussy for hubby"s dinner.mpg.pif(签名验证: 未通过)
C:\WINDOWS\system32\macromd\career girls playing with their snatch after work.mpg.pif(签名验证: 未通过)
C:\WINDOWS\system32\macromd\horny housewife looking for some action.mpg.pif(签名验证: 未通过)
C:\WINDOWS\system32\macromd\sexy pink pussy girl taking it off.mpg.pif(签名验证: 未通过)
C:\WINDOWS\system32\macromd\head rooster pimping hot little tender ass chickens.mpg.pif(签名验证: 未通过)
C:\WINDOWS\system32\macromd\extremely fine hoine with incredible sweet twat.mpg.pif(签名验证: 未通过)
C:\WINDOWS\system32\macromd\two teen lesbians with dildo having fun.mpg.pif(签名验证: 未通过)
C:\WINDOWS\system32\macromd\gangbang tryout with young slut and two studs.mpg.pif(签名验证: 未通过)
C:\WINDOWS\system32\macromd\tiny girl opening hole in crazy wish of cock.mpg.pif(签名验证: 未通过)
Run screenshot
VirSCAN

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
中国反网络病毒联盟
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号