| 文件名 | uploaded |
| 文件类型 |
PE32+ executable (console) x86-64, for MS Windows
|
| 扫描器版本 | 1.0.139.174 |
| 数据库版本 | 2023-09-22 06:05:51 UTC |
我们的扫描器未检测到威胁
| 哈希类型 | 值 | 操作 |
|---|---|---|
| MD5 |
5c583c3a7b6993f7f7369c0c002fad63
|
|
| SHA1 |
1c3439a2ebcd154d2ffa5fde74410cca2527c75a
|
|
| SHA256 |
00a47a51fc1651076970eb909cb7b318912507001ee135bc0e90290d8bfc7b6c
|
|
| SHA512 |
3fcdc4e77b4158b8064d48ac5a73d3577bc7c89e15ee3f1540221819a6f0a15ed2db8e53084e79d17b3edcb8696c5adac57a48a6683f2b3b752f9832c37b21b7
|
|
| ImpHash |
bf3f50a6cdc88a8cd5b1875ca35d592f
|
| 映像基址 | 0x140000000 |
| 入口点 | 0x14002ab0c |
| 编译时间 | 2023-01-19 07:16:38 |
| 校验和 | 0x000922dd (实际: 0x000922dd) |
| 操作系统版本 | 6.0 |
| PEiD 签名 |
PE32+ executable (console) x86-64, for MS Windows
|
| PDB 路径 | C:\devel\ark7\bin.win32\bz.x64.pdb |
| 数字签名 | OK |
| 导入 |
6 库
KERNEL32, USER32, ADVAPI32, SHLWAPI, VERSION, WININET |
| 导出 | 0 函数 |
| 资源 | 2 资源 |
| 节 | 7 节 |
| Symantec Class 3 SHA256 Code Signing CA | Bandisoft (KR) |
| VeriSign Class 3 Public Primary Certification Authority - G5 | Symantec Corporation (US) |
| CompanyName | Bandisoft International Inc. |
| FileDescription | Bandizip Command line tool |
| FileVersion | 7.30.0.1 |
| InternalName | Bandizip Command line tool |
| LegalCopyright | Copyright(C) 2011-2023 Bandisoft International Inc. All rights reserved. |
| OriginalFilename | Bandizip.exe |
| ProductName | Bandizip |
| ProductVersion | 7.30.0.1 |
| Translation | 0x0000 0x04b0 |
| 名称 | 虚拟地址 | 虚拟大小 | 原始大小 | 熵 | 特征 | MD5 |
|---|---|---|---|---|---|---|
.text |
0x00001000 |
385,636 bytes | 386,048 bytes | 6.46 (正常) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
3DAD5182AF4CB3367B1C69D9749072B8 |
.rdata |
0x00060000 |
110,038 bytes | 110,080 bytes | 5.40 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
2B0D2FF1219C73B4BCE8452B8FCAE523 |
.data |
0x0007b000 |
15,436 bytes | 6,144 bytes | 3.52 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
EEC319BC6FC9752692B54DA8A3FC6FE0 |
.pdata |
0x0007f000 |
15,420 bytes | 15,872 bytes | 5.61 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
C0C272D6E1B89EBF29F6DA13ED849FF2 |
_RDATA |
0x00083000 |
348 bytes | 512 bytes | 3.32 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
CC9B66C20923C213E38E77973CCBE648 |
.rsrc |
0x00084000 |
1,456 bytes | 1,536 bytes | 3.94 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
181AC68BC8383453FC5980BEC9CAF9C8 |
.reloc |
0x00085000 |
2,620 bytes | 3,072 bytes | 5.05 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
94A2CCBA9DE8EC124F6183BC13244A86 |
| 资源类型 | 数量 | 总大小 | 百分比 |
|---|---|---|---|
| RT_VERSION | 1 | 908 字节 | |
| RT_MANIFEST | 1 | 381 字节 |
| 主题 |
Bandisoft Bandisoft KR |
| 颁发者 | Symantec Class 3 SHA256 Code Signing CA |
| 序列号 | 42476327080540214500565453353377712970 |
| 主题 |
Symantec Class 3 SHA256 Code Signing CA Symantec Corporation US |
| 颁发者 | VeriSign Class 3 Public Primary Certification Authority - G5 |
| 序列号 | 81710363848389238104995526639509734954 |
OK
Gridinsoft Anti-Malware 拥有更强大的病毒扫描引擎。我们建议使用它来更准确地诊断受感染的系统。这个简短的指南将帮助您安装我们的旗舰产品以进行更准确的诊断:
下载反恶意软件此文件看起来是干净的,但定期的安全维护很重要
