在线病毒检测器 | v.1.0.174.174 |
数据库版本: | 2024-05-01 17:00:18 |
特洛伊木马Agent是一种恶意软件,伪装成合法的文件或程序,以在受感染的计算机上执行各种有害操作,如数据窃取或网络犯罪分子的远程控制。
File | 2 |
已检查 | 2024-05-01 15:01:48 |
MD5 | 0c7183d761f15772b7e9c788be601d29 |
SHA1 | d88c7c1e465bea7bf7377c08fba3aaf77cbf485f |
SHA256 | 244c181eb442fefcf1e1daf900896bee6569481c0e885e3c63efeef86cd64c55 |
SHA512 | fbb25b85f912897e4fdf3eba31994f5e57f7d98c46ca453400736df325d0de0555bcb1b87687b2f2f86c07ff891db151a555d7cf021a98f773e42e960affcbc1 |
Imphash | 9de09016b9b3fdf0a23383673e512061 |
File Size | 59904 bytes |
Gridinsoft能够识别并消除Spy.Win32.Agent.ad!i,无需进一步的用户干预。
FileDescription | Gcmyrnbe Jxbmt Qobvwaj |
CompanyName | FX SOFTWIN DKF |
FileVersion | 82 |
OriginalFilename | Gcmyrnbe.exe |
InternalName | Gcmyrnbe |
LegalCopyright | Copyright © Gcmyrnbe Software 1996-2005 |
ProductName | Gcmyrnbe |
ProductVersion | 6.7 |
IQrgaSWu2 | vAEDw |
fhQ65x | fO5AO |
kYINkG | qIB5pnrW |
PbK3IvxTQo | sejPMUxtkm |
Q6Gili | 5jMhI85 |
irvIiN2 | mBjhrjGka |
qC8hG8V | Dub76Jlu |
1s5EIJXC1U | lXg4aaV |
ycb1Qq4 | RIwG1 |
Translation | 0x0409 0x04b0 |
99986fe536509999eb7def333e3d289f 4d29ce475391c79e619d58b473f5a339 e0eea2a2aca4acf4 |
|
Image Base: | 0x00400000 |
Entry Point: | 0x00453b90 |
Compilation: | 2006-10-01 03:28:02 |
Checksum: | 0x00000000 (Actual: 0x00019263) |
OS Version: | 9.3 |
PEiD: | PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed |
Sign: | The PE file does not contain a certificate table. |
Sections: | 3 |
Imports: | KERNEL32, CRYPT32, GDI32, MSIMG32, OLEACC, SHELL32, user32, WTSAPI32, |
Exports: | 0 |
Resources: | 4 |
名称 | 虚拟地址 | 虚拟大小 | 原始大小 | MD5 | 熵 |
---|---|---|---|---|---|
UPX0 | 0x00001000 | 0x00046000 | 0x00000000 | d41d8cd98f00b204e9800998ecf8427e | 0.00 |
UPX1 | 0x00047000 | 0x0000d000 | 0x0000ce00 | c273140f87d36f76c849cc1500e59a1c | 7.91 |
.rsrc | 0x00054000 | 0x00002000 | 0x00001a00 | 6c4206e8e40143334faf05065f2809a6 | 5.27 |