VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load
VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

U1806.exe    Threatbook file behavior analysis report

Virscan.org multi-engine scan report
Behavior analysis report:         Habo file analysis

Basic Information

file name: U1806.exe
file type: EXEx86
Threat level: malicious
MD5: 621550f1287a6c72de1321553f34847e
sha256: 6df55c9e31f958da74249da9007fd672d08d4411cd5d54db05e55b4c01b121fe

Document Threat Intelligence IOC Report

No intelligence IOC detected

Intelligence decision system

Undetected intelligence determination system

Network behavior report

domains
ip: 13.35.125.105
domain: www.tsx.com
ip: 199.59.148.97
domain: www.google.com
dns
type: A
request: www.tsx.com
type: A
request: www.google.com
http: 0
udp: 0
smtp: 0
icmp: 0
irc: 0
hosts: 0

Document release report

File release report not detected

File process number report

nofind

Document behavior signature report

No file behavior report detected

Static information

Section name: UPX0
Virtual address: 0x00001000
Physical address: 0x00000400
Physical size: 0x00000000
Section permissions: RWE
Section name: UPX1
Virtual address: 0x00140000
Physical address: 0x00000400
Physical size: 0x0037ba00
Section permissions: RWE
Section name: .rsrc
Virtual address: 0x004bc000
Physical address: 0x0037be00
Physical size: 0x00002400
Section permissions: RW-
import_hash: fc886b896f4eab5fd8b7116cded50612
time_stamp: 2018-11-23 15:33:14
entry_point_section: UPX1
image_base: 0x400000
entry_point: 0x4bb6b0
name: BIN
language: LANG_ENGLISH
filetype: data
sublanguage: SUBLANG_ENGLISH_US
offset: 0x0022ea48
size: 0x00257688
name: RT_CURSOR
language: LANG_ENGLISH
filetype: data
sublanguage: SUBLANG_ENGLISH_US
offset: 0x004860d0
size: 0x00000134
name: RT_CURSOR
language: LANG_ENGLISH
filetype: data
sublanguage: SUBLANG_ENGLISH_US
offset: 0x00486208
size: 0x000000b4
name: RT_BITMAP
language: LANG_ENGLISH
filetype: data
sublanguage: SUBLANG_ENGLISH_US
offset: 0x004862e8
size: 0x000005e4
name: RT_BITMAP
language: LANG_ENGLISH
filetype: data
sublanguage: SUBLANG_ENGLISH_US
offset: 0x004869b8
size: 0x000000b8
name: RT_BITMAP
language: LANG_ENGLISH
filetype: data
sublanguage: SUBLANG_ENGLISH_US
offset: 0x00486a70
size: 0x0000016c
name: RT_BITMAP
language: LANG_ENGLISH
filetype: data
sublanguage: SUBLANG_ENGLISH_US
offset: 0x00486be0
size: 0x00000144
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x004bd3e4
size: 0x00000ca8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x002127b0
size: 0x00000128
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x002128f0
size: 0x00000128
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00212a30
size: 0x000008a8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x002132f0
size: 0x000002e8
name: RT_ICON
language: LANG_NEUTRAL
filetype: SysEx File -
sublanguage: SUBLANG_NEUTRAL
offset: 0x002135d8
size: 0x000008a8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00213ea8
size: 0x000008a8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00214768
size: 0x00000468
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00214bd0
size: 0x00000988
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00215558
size: 0x000010a8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00216600
size: 0x000025a8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00218ba8
size: 0x000010a8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00219ca0
size: 0x00000468
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0021a108
size: 0x00000988
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0021aa90
size: 0x000010a8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0021bb38
size: 0x000025a8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0021e0e0
size: 0x000010a8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0021f1d8
size: 0x00000ca8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0021fe98
size: 0x000008a8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00220758
size: 0x000008a8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00221018
size: 0x000002e8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00221318
size: 0x000002e8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00221618
size: 0x000008a8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00221ed8
size: 0x000008a8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00222798
size: 0x00000468
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00222c00
size: 0x00000988
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00223588
size: 0x000010a8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00224630
size: 0x000025a8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00226bd8
size: 0x000010a8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00227cd0
size: 0x00000468
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00228138
size: 0x00000988
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00228ac0
size: 0x000010a8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x00229b68
size: 0x000025a8
name: RT_ICON
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0022c110
size: 0x000010a8
name: RT_MENU
language: LANG_CHINESE
filetype: data
sublanguage: SUBLANG_CHINESE_TRADITIONAL
offset: 0x00211a28
size: 0x00000044
name: RT_MENU
language: LANG_ENGLISH
filetype: data
sublanguage: SUBLANG_ENGLISH_US
offset: 0x0022e8f8
size: 0x00000070
name: RT_MENU
language: LANG_CHINESE
filetype: data
sublanguage: SUBLANG_CHINESE_SIMPLIFIED
offset: 0x00210880
size: 0x00000056
name: RT_MENU
language: LANG_CHINESE
filetype: data
sublanguage: SUBLANG_CHINESE_TRADITIONAL
offset: 0x00211a70
size: 0x00000044
name: RT_MENU
language: LANG_ENGLISH
filetype: data
sublanguage: SUBLANG_ENGLISH_US
offset: 0x0022e968
size: 0x0000006a
name: RT_MENU
language: LANG_CHINESE
filetype: data
sublanguage: SUBLANG_CHINESE_SIMPLIFIED
offset: 0x002108d8
size: 0x00000050
name: RT_MENU
language: LANG_CHINESE
filetype: data
sublanguage: SUBLANG_CHINESE_TRADITIONAL
offset: 0x00211ab8
size: 0x00000036
name: RT_MENU
language: LANG_ENGLISH
filetype: data
sublanguage: SUBLANG_ENGLISH_US
offset: 0x0022e9d8
size: 0x00000070
name: RT_MENU
language: LANG_CHINESE
filetype: data
sublanguage: SUBLANG_CHINESE_SIMPLIFIED
offset: 0x00210928
size: 0x00000056