VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load
VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

a79abda9bfc379859c57319e391e4168    Threatbook file behavior analysis report

Basic Information

file name: a79abda9bfc379859c57319e391e4168
file type: EXEx86
Threat level: malicious
MD5: a79abda9bfc379859c57319e391e4168
sha256: b68053e8d6163215acde4f05baed5996578b74b6c1d67133fdbd85496352be16

Document Threat Intelligence IOC Report

No intelligence IOC detected

Intelligence decision system

Undetected intelligence determination system

Network behavior report

domains: 0

Document release report

File release report not detected

File process number report

nofind

Document behavior signature report

No file behavior report detected

Static information

Section name: CODE
Virtual address: 0x00001000
Physical address: 0x00000400
Physical size: 0x00026800
Section permissions: RW-
Section name: DATA
Virtual address: 0x0005d000
Physical address: 0x00026c00
Physical size: 0x00000a00
Section permissions: RW-
Section name: BSS
Virtual address: 0x0005f000
Physical address: 0x00027600
Physical size: 0x00000000
Section permissions: RW-
Section name: .idata
Virtual address: 0x00060000
Physical address: 0x00027600
Physical size: 0x00000e00
Section permissions: RW-
Section name: .tls
Virtual address: 0x00063000
Physical address: 0x00028400
Physical size: 0x00000000
Section permissions: RW-
Section name: .rdata
Virtual address: 0x00064000
Physical address: 0x00028400
Physical size: 0x00000200
Section permissions: RW-
Section name: .reloc
Virtual address: 0x00065000
Physical address: 0x00028600
Physical size: 0x00000000
Section permissions: RW-
Section name: .rsrc
Virtual address: 0x0006c000
Physical address: 0x00028600
Physical size: 0x00002200
Section permissions: RW-
Section name: .aspack
Virtual address: 0x00074000
Physical address: 0x0002a800
Physical size: 0x00003000
Section permissions: RW-
Section name: .adata
Virtual address: 0x00077000
Physical address: 0x0002d800
Physical size: 0x00000000
Section permissions: RW-
import_hash: 67533f79a87f4ce08c671dedbb7cb801
time_stamp: 1992-06-20 06:22:17
entry_point_section: .aspack
image_base: 0x400000
entry_point: 0x74001
name: RT_CURSOR
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0006cadc
size: 0x00000134
name: RT_CURSOR
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0006cc10
size: 0x00000134
name: RT_CURSOR
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0006cd44
size: 0x00000134
name: RT_CURSOR
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0006ce78
size: 0x00000134
name: RT_CURSOR
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0006cfac
size: 0x00000134
name: RT_CURSOR
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0006d0e0
size: 0x00000134
name: RT_CURSOR
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0006d214
size: 0x00000134
name: RT_BITMAP
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0006d348
size: 0x000001d0
name: RT_BITMAP
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0006d518
size: 0x000001e4
name: RT_BITMAP
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0006d6fc
size: 0x000001d0
name: RT_BITMAP
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0006d8cc
size: 0x000001d0
name: RT_BITMAP
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0006da9c
size: 0x000001d0
name: RT_BITMAP
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0006dc6c
size: 0x000001d0
name: RT_BITMAP
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0006de3c
size: 0x000001d0
name: RT_BITMAP
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0006e00c
size: 0x000001d0
name: RT_BITMAP
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x0006e1dc
size: 0x000001d0
name: RT_BITMAP
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x0006e3ac
size: 0x000001d0
name: RT_BITMAP
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x0006e57c
size: 0x000000e8
name: RT_ICON
language: LANG_CHINESE
filetype: data
sublanguage: SUBLANG_CHINESE_TRADITIONAL
offset: 0x000752ec
size: 0x00001ca8
name: RT_DIALOG
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x0007030c
size: 0x00000052
name: RT_STRING
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x00070360
size: 0x00000228
name: RT_STRING
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x00070588
size: 0x000001d0
name: RT_STRING
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x00070758
size: 0x0000016c
name: RT_STRING
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x000708c4
size: 0x000001fc
name: RT_STRING
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x00070ac0
size: 0x00000214
name: RT_STRING
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x00070cd4
size: 0x000000ec
name: RT_STRING
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x00070dc0
size: 0x0000012c
name: RT_STRING
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x00070eec
size: 0x0000033c
name: RT_STRING
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x00071228
size: 0x000003d8
name: RT_STRING
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x00071600
size: 0x00000398
name: RT_STRING
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x00071998
size: 0x00000418
name: RT_STRING
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x00071db0
size: 0x00000114
name: RT_STRING
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x00071ec4
size: 0x000000e4
name: RT_STRING
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x00071fa8
size: 0x0000024c
name: RT_STRING
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x000721f4
size: 0x000003d4
name: RT_STRING
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x000725c8
size: 0x00000388
name: RT_STRING
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x00072950
size: 0x000002d8
name: RT_RCDATA
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x00072c28
size: 0x00000010
name: RT_RCDATA
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x00072c38
size: 0x000002a4
name: RT_RCDATA
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x00072edc
size: 0x000001c0
name: RT_GROUP_CURSOR
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x0007309c
size: 0x00000014
name: RT_GROUP_CURSOR
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x000730b0
size: 0x00000014
name: RT_GROUP_CURSOR
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x000730c4
size: 0x00000014
name: RT_GROUP_CURSOR
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x000730d8
size: 0x00000014
name: RT_GROUP_CURSOR
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x000730ec
size: 0x00000014
name: RT_GROUP_CURSOR
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x00073100
size: 0x00000014
name: RT_GROUP_CURSOR
language: LANG_NEUTRAL
filetype: empty
sublanguage: SUBLANG_NEUTRAL
offset: 0x00073114
size: 0x00000014
name: RT_GROUP_ICON
language: LANG_CHINESE
filetype: data
sublanguage: SUBLANG_CHINESE_TRADITIONAL
offset: 0x000752d8
size: 0x00000014