VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load
OneKeyGhost.exe    Threatbook file behavior analysis report
Virscan.org multi-engine scan report
Basic Information
file name:OneKeyGhost.exe
file type:EXEx86
Threat level:clean
MD5:a64e374945845aaec6ad063e8be450db
sha256:46d0413084564b4de78218ab73cac481743d6c5756b13fd4ffec7c897b8f75d8
Document Threat Intelligence IOC Report
No intelligence IOC detected
Intelligence decision system
Undetected intelligence determination system
Network behavior report
domains
ip:170.178.165.74
domain:www.onekey.cc
ip:58.218.215.120
domain:c.cnzz.com
ip:203.119.206.95
domain:z13.cnzz.com
ip:222.186.49.229
domain:s11.cnzz.com
dns
type:A
request:www.onekey.cc
type:A
request:c.cnzz.com
type:A
request:z13.cnzz.com
type:A
request:s11.cnzz.com
http
count:1
url:
count:1
url:
udp:0
smtp:0
icmp:0
irc:0
hosts:0
Document release report
File release report not detected
File process number report
nofind
Document behavior signature report
No file behavior report detected
Static information
Section name:UPX0
Virtual address:0x00001000
Physical address:0x00000400
Physical size:0x00000000
Section permissions:RWE
Section name:UPX1
Virtual address:0x00081000
Physical address:0x00000400
Physical size:0x00045600
Section permissions:RWE
Section name:.rsrc
Virtual address:0x000c7000
Physical address:0x00045a00
Physical size:0x00004a00
Section permissions:RW-
import_hash:8367c1e56060d6b1b2715e99ca951476
time_stamp:2012-04-10 08:11:21
entry_point_section:UPX1
entry_point_section:UPX1
image_base:0x400000
entry_point:0xc5990
name:RT_ICON
language:LANG_ENGLISH
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_ENGLISH_UK
offset:0x000cab04
size:0x00000468
name:RT_ICON
language:LANG_ENGLISH
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_ENGLISH_UK
offset:0x000cab04
size:0x00000468
name:RT_ICON
language:LANG_ENGLISH
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_ENGLISH_UK
offset:0x000cab04
size:0x00000468
name:RT_ICON
language:LANG_ENGLISH
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_ENGLISH_UK
offset:0x000cab04
size:0x00000468
name:RT_ICON
language:LANG_ENGLISH
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_ENGLISH_UK
offset:0x000cab04
size:0x00000468
name:RT_ICON
language:LANG_ENGLISH
filetype:GLS_BINARY_LSB_FIRST
sublanguage:SUBLANG_ENGLISH_UK
offset:0x000cab04
size:0x00000468
name:RT_MENU
language:LANG_ENGLISH
filetype:PARIX executable not stripped
sublanguage:SUBLANG_ENGLISH_UK
offset:0x000c02d8
size:0x0000004e
name:RT_DIALOG
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_UK
offset:0x000c0328
size:0x000000f0
name:RT_STRING
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x000c1308
size:0x00000084
name:RT_STRING
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x000c1308
size:0x00000084
name:RT_STRING
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x000c1308
size:0x00000084
name:RT_STRING
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x000c1308
size:0x00000084
name:RT_STRING
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x000c1308
size:0x00000084
name:RT_STRING
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x000c1308
size:0x00000084
name:RT_STRING
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_US
offset:0x000c1308
size:0x00000084
name:RT_GROUP_ICON
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_UK
offset:0x000c13e4
size:0x00000014
name:RT_GROUP_ICON
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_UK
offset:0x000c13e4
size:0x00000014
name:RT_GROUP_ICON
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_UK
offset:0x000c13e4
size:0x00000014
name:RT_GROUP_ICON
language:LANG_ENGLISH
filetype:data
sublanguage:SUBLANG_ENGLISH_UK
offset:0x000c13e4
size:0x00000014
name:RT_VERSION
language:LANG_CHINESE
filetype:data
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000cafa4
size:0x00000320
name:RT_MANIFEST
language:LANG_CHINESE
filetype:XML document text
sublanguage:SUBLANG_CHINESE_SIMPLIFIED
offset:0x000cb2c8
size:0x00000317

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
中国反网络病毒联盟
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号