Client-built.exe Stealer Keylogger - 扫描报告
在线病毒检测器 | v.1.0.172.174 |
数据库版本: | 2024-04-16 13:00:15 |
Spy.Win32.Keylogger.dd!n
键盘记录器被设计为在计算机或移动设备上秘密记录按键,捕获用户输入的一切内容,包括敏感信息如密码和信用卡号码。它可以被网络犯罪分子用来在用户不知情或未经同意的情况下窃取个人和机密数据。
File | Client-built.exe |
已检查 | 2024-04-16 10:07:50 |
MD5 | 19b882f6532d84ee75647dfa11c9b363 |
SHA1 | 60d10ccb100856a00076dc73e09c6aa2f9698d16 |
SHA256 | 075cc480a01c9192695854f0406c3d624216a7c298f81a78ce7d6a24b0c15f15 |
SHA512 | 70f80f2dfefb06c8f8f6b230bd25071be3ad7dfda67dd6b0296e1a9aacf97cfa26603008c1b5946e17f125c37c6fdeb45af9996e0a4b170516fbeb26d7b71276 |
Imphash | f34d5f2d4577ed6d9ceec516c1f5a744 |
File Size | 3293184 bytes |
Spy.Win32.Keylogger.dd!n 移除
![Spy.Win32.Keylogger.dd!n 移除](/img/antimalware-ad01.webp)
Gridinsoft能够识别并消除Spy.Win32.Keylogger.dd!n,无需进一步的用户干预。
- 首先下载Gridinsoft反恶意软件到您的计算机。
- 双击gsam-zh-install.exe文件,并按照屏幕上的说明安装程序。
- Gridinsoft反恶意软件安装完成后,程序将在扫描屏幕上打开。
- 点击"标准扫描"按钮。
- 扫描过程完成后,点击"立即清除"以移除检测到的威胁。
- 如果需要,重启系统以完成移除过程。
文件版本信息
Translation | 0x0000 0x04b0 |
Comments | |
CompanyName | |
FileDescription | Quasar Client |
FileVersion | 1.4.1 |
InternalName | Client.exe |
LegalCopyright | Copyright © MaxXor 2023 |
LegalTrademarks | |
OriginalFilename | Client.exe |
ProductName | Quasar |
ProductVersion | 1.4.1 |
Assembly Version | 1.4.1.0 |
可移植可执行文件信息
![](data:image/png;base64,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) |
eb9544b3516ffc3f3b2a0005691e48d5
0e562ebd8c0df35fb1161c97769d42f1
64a69ae8d4d4d4a8 |
Image Base: | 0x00400000 |
Entry Point: | 0x0071e3ee |
Compilation: | 2023-03-12 16:16:39 |
Checksum: | 0x00000000 (Actual: 0x00325337) |
OS Version: | 4.0 |
PEiD: | PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows |
Sign: | The PE file does not contain a certificate table. |
Sections: | 3 |
Imports: |
mscoree,
|
Exports: |
0
|
Resources: | 8 |
区块
名称 |
虚拟地址 |
虚拟大小 |
原始大小 |
MD5 |
熵 |
.text |
0x00002000 |
0x0031c3f4 |
0x0031c400 |
faa3dec7ba505d07afefd2677741c8e0 |
6.09 |
.rsrc |
0x00320000 |
0x00007708 |
0x00007800 |
1aebfd52e9692b515917bf38c3058805 |
6.72 |
.reloc |
0x00328000 |
0x0000000c |
0x00000200 |
221440a5d95d2d9aec29428c5700ca78 |
0.10 |