VirSCAN VirSCAN

1, 您可以上傳任何檔案,但是檔案大小不能超過20MB。
2, 我們支援RAR或ZIP壓縮檔案格式的自動解壓縮,但壓縮檔案中不能夾帶超過20個檔案。
3, 我們可以辨識並檢測密碼為 'infected' 或 'virus' 的壓縮檔案。
4, 如果您的瀏覽器無法上傳文件,請下載Virscan Uploader進行上傳。

選擇語言
伺服器負載程度
Server Load
VirSCAN
VirSCAN

1, 您可以上傳任何檔案,但是檔案大小不能超過20MB。
2, 我們支援RAR或ZIP壓縮檔案格式的自動解壓縮,但壓縮檔案中不能夾帶超過20個檔案。
3, 我們可以辨識並檢測密碼為 'infected' 或 'virus' 的壓縮檔案。

00长袜子皮皮    微步文件行為分析報告

基本信息

文件名稱: 00长袜子皮皮
文件類型: EXEx86
威脅等級: suspicious
MD5: 7e054bbaf6262c865047360d30c43a48
sha256: e4c47af046953154fdc1123aa19233aacd637c46a9e198476799f17b0a0eeed5

文件威脅情報IOC報告

未檢測到情報IOC

情報判定係統

未檢測到情報判定係統

網絡行為報告

domains
ip:
domain: echo.multinstall.com.br
dns
type: A
request: echo.multinstall.com.br
http: 0
udp: 0
smtp: 0
icmp: 0
irc: 0
hosts: 0

文件釋放報告

未檢測到文件釋放報告

文件進程數報告

nofind

文件行為簽名報告

未檢測到文件行為報告

靜態信息

節名: UPX0
虛擬地址: 0x00001000
物理地址: 0x00000400
物理大小: 0x00000000
節權限: RWE
節名: UPX1
虛擬地址: 0x000b3000
物理地址: 0x00000400
物理大小: 0x00057400
節權限: RWE
節名: .rsrc
虛擬地址: 0x0010b000
物理地址: 0x00057800
物理大小: 0x00004e00
節權限: RW-
import_hash: 36894e51b196d60ec47e94e18382ac2f
time_stamp: 2014-08-06 02:08:01
entry_point_section: UPX1
image_base: 0x400000
entry_point: 0x10a150
name: RT_CURSOR
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f37c0
size: 0x00000134
name: RT_CURSOR
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f38f4
size: 0x00000134
name: RT_CURSOR
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f3a28
size: 0x00000134
name: RT_CURSOR
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f3b5c
size: 0x00000134
name: RT_CURSOR
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f3c90
size: 0x00000134
name: RT_CURSOR
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f3dc4
size: 0x00000134
name: RT_CURSOR
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f3ef8
size: 0x00000134
name: RT_ICON
language: LANG_ENGLISH
filetype: GLS_BINARY_LSB_FIRST
sublanguage: SUBLANG_ENGLISH_US
offset: 0x0010b7c4
size: 0x00000468
name: RT_ICON
language: LANG_ENGLISH
filetype: dBase III DBT, version number 0, next free block index 40
sublanguage: SUBLANG_ENGLISH_US
offset: 0x0010bc30
size: 0x000010a8
name: RT_ICON
language: LANG_ENGLISH
filetype: data
sublanguage: SUBLANG_ENGLISH_US
offset: 0x0010ccdc
size: 0x000025a8
name: RT_STRING
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f7ae4
size: 0x00000234
name: RT_STRING
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f7d18
size: 0x000000fc
name: RT_STRING
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f7e14
size: 0x000000f8
name: RT_STRING
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f7f0c
size: 0x00000358
name: RT_STRING
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f8264
size: 0x00000400
name: RT_STRING
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f8664
size: 0x0000036c
name: RT_STRING
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f89d0
size: 0x000000d8
name: RT_STRING
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f8aa8
size: 0x000000f0
name: RT_STRING
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f8b98
size: 0x000003bc
name: RT_STRING
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f8f54
size: 0x0000035c
name: RT_STRING
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f92b0
size: 0x00000310
name: RT_STRING
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f95c0
size: 0x000003bc
name: RT_STRING
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f997c
size: 0x00000398
name: RT_STRING
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000f9d14
size: 0x0000043c
name: RT_RCDATA
language: LANG_NEUTRAL
filetype: Non-ISO extended-ASCII text, with NEL line terminators
sublanguage: SUBLANG_NEUTRAL
offset: 0x000fa150
size: 0x00000010
name: RT_RCDATA
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000fa160
size: 0x00000938
name: RT_GROUP_CURSOR
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000faa98
size: 0x00000014
name: RT_GROUP_CURSOR
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000faaac
size: 0x00000014
name: RT_GROUP_CURSOR
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000faac0
size: 0x00000014
name: RT_GROUP_CURSOR
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000faad4
size: 0x00000014
name: RT_GROUP_CURSOR
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000faae8
size: 0x00000014
name: RT_GROUP_CURSOR
language: LANG_NEUTRAL
filetype: data
sublanguage: SUBLANG_NEUTRAL
offset: 0x000faafc
size: 0x00000014
name: RT_GROUP_CURSOR
language: LANG_NEUTRAL
filetype: Non-ISO extended-ASCII text, with no line terminators
sublanguage: SUBLANG_NEUTRAL
offset: 0x000fab10
size: 0x00000014
name: RT_GROUP_ICON
language: LANG_ENGLISH
filetype: data
sublanguage: SUBLANG_ENGLISH_US
offset: 0x0010f288
size: 0x00000030
name: RT_VERSION
language: LANG_PORTUGUESE
filetype: data
sublanguage: SUBLANG_PORTUGUESE_BRAZILIAN
offset: 0x0010f2bc
size: 0x000003d8
name: RT_MANIFEST
language: LANG_NEUTRAL
filetype: XML 1.0 document, ASCII text, with CRLF line terminators
sublanguage: SUBLANG_NEUTRAL
offset: 0x0010f698
size: 0x00000390