VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load
WinKawaks.exe    Threatbook file behavior analysis report
Virscan.org multi-engine scan report
Behavior analysis report:         Habo file analysis
Basic Information
file name:WinKawaks.exe
file type:EXEx86
Threat level:clean
MD5:887bf5454703c68674599385066dc9eb
sha256:5622725e6fcf66f37163c351398e985bef97f07a7ed635aa5e17fae648bd3cb2
Document Threat Intelligence IOC Report
No intelligence IOC detected
Intelligence decision system
Undetected intelligence determination system
Network behavior report
domains:0
dns:0
http:0
udp:0
smtp:0
icmp:0
irc:0
hosts:0
Document release report
File release report not detected
File process number report
nofind
Document behavior signature report
No file behavior report detected
Static information
Section name:UPX0
Virtual address:0x00001000
Physical address:0x00000600
Physical size:0x00047a00
Section permissions:RW-
Section name:UPX1
Virtual address:0x002db000
Physical address:0x00048000
Physical size:0x0000b800
Section permissions:RW-
Section name:.rsrc0
Virtual address:0x00330000
Physical address:0x00053800
Physical size:0x00000c00
Section permissions:RW-
Section name:ZC
Virtual address:0x00332000
Physical address:0x00054400
Physical size:0x00000200
Section permissions:RW-
Section name:IMP
Virtual address:0x00334000
Physical address:0x00054600
Physical size:0x00000800
Section permissions:RW-
Section name:.rsrc
Virtual address:0x00336000
Physical address:0x00054e00
Physical size:0x00032800
Section permissions:RW-
Section name:.aspack
Virtual address:0x0038d000
Physical address:0x00087600
Physical size:0x00002a00
Section permissions:RW-
Section name:.adata
Virtual address:0x00390000
Physical address:0x0008a000
Physical size:0x00000000
Section permissions:RW-
import_hash:44b5e98a2d14b30e6d92cef44d8d5671
time_stamp:2002-08-08 01:06:29
entry_point_section:.aspack
entry_point_section:.aspack
image_base:0x400000
entry_point:0x38d001
name:RT_BITMAP
language:LANG_FRENCH
filetype:data
sublanguage:SUBLANG_FRENCH
offset:0x00337a8c
size:0x0003f02c
name:RT_BITMAP
language:LANG_FRENCH
filetype:empty
sublanguage:SUBLANG_FRENCH
offset:0x00376ab8
size:0x00002760
name:RT_BITMAP
language:LANG_FRENCH
filetype:empty
sublanguage:SUBLANG_FRENCH
offset:0x00379218
size:0x00001c38
name:RT_BITMAP
language:LANG_FRENCH
filetype:empty
sublanguage:SUBLANG_FRENCH
offset:0x0037ae50
size:0x00003974
name:RT_BITMAP
language:LANG_FRENCH
filetype:empty
sublanguage:SUBLANG_FRENCH
offset:0x0037e7c4
size:0x000000e0
name:RT_BITMAP
language:LANG_FRENCH
filetype:empty
sublanguage:SUBLANG_FRENCH
offset:0x0037e8a4
size:0x00000d20
name:RT_BITMAP
language:LANG_FRENCH
filetype:empty
sublanguage:SUBLANG_FRENCH
offset:0x0037f5c4
size:0x00004ef8
name:RT_BITMAP
language:LANG_FRENCH
filetype:empty
sublanguage:SUBLANG_FRENCH
offset:0x003844bc
size:0x00000c7c
name:RT_BITMAP
language:LANG_FRENCH
filetype:empty
sublanguage:SUBLANG_FRENCH
offset:0x00385138
size:0x000004e8
name:RT_ICON
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x0038efc4
size:0x000008a8
name:RT_ICON
language:LANG_ENGLISH
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_ENGLISH_US
offset:0x0038ea5c
size:0x00000568
name:RT_ICON
language:LANG_FRENCH
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_FRENCH
offset:0x0038e934
size:0x00000128
name:RT_ICON
language:LANG_FRENCH
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_FRENCH
offset:0x0038e80c
size:0x00000128
name:RT_ICON
language:LANG_FRENCH
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_FRENCH
offset:0x0038e6e4
size:0x00000128
name:RT_ICON
language:LANG_FRENCH
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_FRENCH
offset:0x0038e5bc
size:0x00000128
name:RT_MENU
language:LANG_ENGLISH
filetype:empty
sublanguage:SUBLANG_ENGLISH_US
offset:0x00385620
size:0x00002a88
name:RT_DIALOG
language:LANG_ENGLISH
filetype:empty
sublanguage:SUBLANG_ENGLISH_US
offset:0x003880a8
size:0x000001e2
name:RT_DIALOG
language:LANG_ENGLISH
filetype:empty
sublanguage:SUBLANG_ENGLISH_US
offset:0x0038828c
size:0x0000087e
name:RT_DIALOG
language:LANG_FRENCH
filetype:empty
sublanguage:SUBLANG_FRENCH
offset:0x00388b0c
size:0x000003c0
name:RT_DIALOG
language:LANG_FRENCH
filetype:empty
sublanguage:SUBLANG_FRENCH
offset:0x00388ecc
size:0x000002f4
name:RT_DIALOG
language:LANG_FRENCH
filetype:empty
sublanguage:SUBLANG_FRENCH
offset:0x003891c0
size:0x0000013c
name:RT_DIALOG
language:LANG_FRENCH
filetype:empty
sublanguage:SUBLANG_FRENCH
offset:0x003892fc
size:0x00000160
name:RT_DIALOG
language:LANG_FRENCH
filetype:empty
sublanguage:SUBLANG_FRENCH
offset:0x0038945c
size:0x000001bc
name:RT_DIALOG
language:LANG_ENGLISH
filetype:empty
sublanguage:SUBLANG_ENGLISH_US
offset:0x00389618
size:0x00000158
name:RT_DIALOG
language:LANG_FRENCH
filetype:empty
sublanguage:SUBLANG_FRENCH
offset:0x00389770
size:0x000000dc
name:RT_DIALOG
language:LANG_ENGLISH
filetype:empty
sublanguage:SUBLANG_ENGLISH_US
offset:0x0038984c
size:0x00000788
name:RT_DIALOG
language:LANG_FRENCH
filetype:empty
sublanguage:SUBLANG_FRENCH
offset:0x00389fd4
size:0x00000708
name:RT_DIALOG
language:LANG_FRENCH
filetype:empty
sublanguage:SUBLANG_FRENCH
offset:0x0038a6dc
size:0x0000047e
name:RT_DIALOG
language:LANG_FRENCH
filetype:empty
sublanguage:SUBLANG_FRENCH
offset:0x0038ab5c
size:0x000000c8
name:RT_DIALOG
language:LANG_FRENCH
filetype:empty
sublanguage:SUBLANG_FRENCH
offset:0x0038ac24
size:0x000004b0
name:RT_STRING
language:LANG_ENGLISH
filetype:empty
sublanguage:SUBLANG_ENGLISH_US
offset:0x0038b0d4
size:0x0000002c
name:RT_STRING
language:LANG_ENGLISH
filetype:empty
sublanguage:SUBLANG_ENGLISH_US
offset:0x0038b100
size:0x00000036
name:RT_STRING
language:LANG_ENGLISH
filetype:empty
sublanguage:SUBLANG_ENGLISH_US
offset:0x0038b138
size:0x00000070
name:RT_STRING
language:LANG_ENGLISH
filetype:empty
sublanguage:SUBLANG_ENGLISH_US
offset:0x0038b1a8
size:0x00000088
name:RT_STRING
language:LANG_ENGLISH
filetype:empty
sublanguage:SUBLANG_ENGLISH_US
offset:0x0038b230
size:0x000000da
name:RT_STRING
language:LANG_ENGLISH
filetype:empty
sublanguage:SUBLANG_ENGLISH_US
offset:0x0038b30c
size:0x00000046
name:RT_STRING
language:LANG_ENGLISH
filetype:empty
sublanguage:SUBLANG_ENGLISH_US
offset:0x0038b354
size:0x00000078
name:RT_STRING
language:LANG_ENGLISH
filetype:empty
sublanguage:SUBLANG_ENGLISH_US
offset:0x0038b3cc
size:0x000001f8
name:RT_STRING
language:LANG_ENGLISH
filetype:empty
sublanguage:SUBLANG_ENGLISH_US
offset:0x0038b5c4
size:0x00000086
name:RT_ACCELERATOR
language:LANG_ENGLISH
filetype:empty
sublanguage:SUBLANG_ENGLISH_US
offset:0x0038b64c
size:0x00000288
name:RT_GROUP_ICON
language:LANG_ENGLISH
filetype:MS Windows icon resource - 2 icons, 32x32, 256-colors
sublanguage:SUBLANG_ENGLISH_US
offset:0x0038e598
size:0x00000022
name:RT_GROUP_ICON
language:LANG_FRENCH
filetype:MS Windows icon resource - 2 icons, 16x16, 16-colors
sublanguage:SUBLANG_FRENCH
offset:0x0038e574
size:0x00000022
name:RT_GROUP_ICON
language:LANG_FRENCH
filetype:MS Windows icon resource - 2 icons, 16x16, 16-colors
sublanguage:SUBLANG_FRENCH
offset:0x0038e550
size:0x00000022
name:RT_VERSION
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x0038e218
size:0x00000338

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
中国反网络病毒联盟
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号