VirSCAN VirSCAN

1, U kunt elk bestandstype UPLOADEN, bestandsgrootte max. 20 Mb.
2, VirSCAN ondersteunt Rar/Zip decompressie, max. 20 bestanden per Rar/Zip
3, VirSCAN kan Rar/Zip bestanden scannen die beveiligd zijn met wachtwoord 'infected' of 'virus'.
4, Als uw browser geen bestanden kan uploaden, kunt u VirSCAN uploaden.

Taal
Serverbelasting
Server Load
VirSCAN
VirSCAN

1, U kunt elk bestandstype UPLOADEN, bestandsgrootte max. 20 Mb.
2, VirSCAN ondersteunt Rar/Zip decompressie, max. 20 bestanden per Rar/Zip
3, VirSCAN kan Rar/Zip bestanden scannen die beveiligd zijn met wachtwoord 'infected' of 'virus'.

Basis informatie

Bestandsnaam: 00走向共和
Bestandsgrootte: 2086735
Bestandstype: application/x-dosexec
MD5: 463f6e8aba23d380d9d9ef051c3f2df9
sha1: 5a4b095df1a6fcfa1386aef23c40759da12b931e

 CreateProcess

ApplicationName:
CmdLine:
childid: 2608
childname: 1618997417977_463f6e8aba23d380d9d9ef051c3f2df9.exe
childpath: C:\Users\Administrator\AppData\Local\Temp\1618997417977_463f6e8aba23d380d9d9ef051c3f2df9.exe
drop_type:
name:
noNeedLine:
path:
pid: 772

 Malicious

attck_tactics: 其他恶意行为
level: 1
matchedinfo: 当前运行环境不符合时(如:检测到杀毒软件等),程序会主动退出达到规避检测的目的。恶意行为可能没有完全触发
num: 1
process_id: 2608
process_name: 1618997417977_463f6e8aba23d380d9d9ef051c3f2df9.exe
rulename: 结束自身进程
attck_tactics: 防御逃逸
level: 2
matchedinfo: 检查程序运行时监视鼠标是否移动。一般被恶意软件用于沙盒逃逸
num: 1
process_id: 2608
process_name: 1618997417977_463f6e8aba23d380d9d9ef051c3f2df9.exe
rulename: 获取当前鼠标位置