| 在线病毒检测器 | v.1.0.165.174 |
| 数据库版本: | 2024-02-21 18:00:25 |
这是一个通用检测名称,用于识别具有特洛伊木马特征的潜在有害或可疑文件或程序。这是一种伪装成合法或良性程序但包含恶意代码或功能的恶意软件。
| File | ep_setup.exe |
| 已检查 | 2024-02-21 16:34:29 |
| MD5 | 0f0d942625a01ba2bfa7f4ff6374f03b |
| SHA1 | 8c08e5ff28353a0116f57afb9e8e1cd0641cffd3 |
| SHA256 | 0d46bd6e83d661567efd6d79ae760a041f6a1ea72b4b043da428c7fbb93ad27f |
| SHA512 | be976731c23ea8042cc354a98988c0d1832f548d62ae32d8969cd739ee7ee546ea2635550ea803bd9be4c6f3c2518928e1e179233aeca7ae324190b3b4b51ea7 |
| Imphash | 11977f8fc78984c7718f55a8b8333a0e |
| File Size | 2494976 bytes |
Gridinsoft能够识别并消除Spy.Win64.Gen.tr,无需进一步的用户干预。
| CompanyName | VALINET Solutions SRL |
| FileDescription | ExplorerPatcher Setup Program |
| FileVersion | 22621.3007.63.3 |
| InternalName | ep_setup.exe |
| LegalCopyright | Copyright (C) 2006-2024 VALINET Solutions SRL. All rights reserved. |
| OriginalFilename | ep_setup.exe |
| ProductName | ExplorerPatcher |
| ProductVersion | 22621.3007.63.3 |
| Translation | 0x0409 0x04b0 |
| Image Base: | 0x140000000 |
| Entry Point: | 0x1400055a4 |
| Compilation: | 2024-02-21 02:45:11 |
| Checksum: | 0x00000000 (Actual: 0x00261e1b) |
| OS Version: | 6.0 |
| PDB Path: | D:\a\ExplorerPatcher\ExplorerPatcher\build\Release\ep_setup.pdb |
| PEiD: | PE32+ executable (GUI) x86-64, for MS Windows |
| Sign: | The PE file does not contain a certificate table. |
| Sections: | 7 |
| Imports: | KERNEL32, USER32, ADVAPI32, SHELL32, ole32, OLEAUT32, RstrtMgr, VERSION, SHLWAPI, |
| Exports: | 4 |
| Resources: | 42 |
| 名称 | 虚拟地址 | 虚拟大小 | 原始大小 | MD5 | 熵 |
|---|---|---|---|---|---|
| .text | 0x00001000 | 0x0001a770 | 0x0001a800 | 8121a46f8fc8122790371d3026ddb135 | 6.46 |
| .rdata | 0x0001c000 | 0x0000d3b8 | 0x0000d400 | adc6e7bdfe2f970077b0ba36457639a8 | 4.95 |
| .data | 0x0002a000 | 0x00001f20 | 0x00000c00 | 9568a0d5f3d0612428360c9e44a8d7eb | 1.92 |
| .pdata | 0x0002c000 | 0x000014e8 | 0x00001600 | c682105150efc8796e4cdbd388d09d09 | 5.01 |
| _RDATA | 0x0002e000 | 0x0000015c | 0x00000200 | 4c1424deb589236337437f9ce99240ee | 2.77 |
| .rsrc | 0x0002f000 | 0x00236528 | 0x00236600 | 787fad3f65dc4c45445d578956b7b4cc | 6.04 |
| .reloc | 0x00266000 | 0x000006bc | 0x00000800 | c8765d3f57d03a6e67da5c23fd79fb50 | 5.05 |
