VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.
4, If your browser cannot upload files, please download VirSCAN uploader to upload.

Language
Server load
Server Load
VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Basic Information

file name: 00致我们终将逝去的青春
file size: 169472
file type: application/x-dosexec
MD5: a1184a6ec4811be65fa85ec85d59e562
sha1: b8c6d53a39573971d6210caad67d530f6555bdec

 CreateProcess

ApplicationName:
CmdLine:
childid: 2664
childname: 1618731001704_a1184a6ec4811be65fa85ec85d59e562.exe
childpath: C:\Users\Administrator\AppData\Local\Temp\1618731001704_a1184a6ec4811be65fa85ec85d59e562.exe
drop_type:
name:
noNeedLine:
path:
pid: 2384

 Malicious

attck_tactics: 持久化
level: 1
matchedinfo: 恶意程序通过打开服务控制管理器(Service Control Manager),以达到对服务进行控制的目的
num: 73
process_id: 2664
process_name: 1618731001704_a1184a6ec4811be65fa85ec85d59e562.exe
rulename: 打开服务控制管理器
attck_tactics: 执行
level: 2
matchedinfo: 恶意程序通过启动恶意服务,以达到通过服务方式执行恶意代码的目的
num: 75
process_id: 2664
process_name: 1618731001704_a1184a6ec4811be65fa85ec85d59e562.exe
rulename: 启动服务
attck_tactics: 执行
level: 2
matchedinfo: 恶意程序通过打开线程,以达到操作其它线程的目的
num: 663
process_id: 2664
process_name: 1618731001704_a1184a6ec4811be65fa85ec85d59e562.exe
rulename: 打开其他线程