| 文件名 | Setup.exe |
| 文件类型 |
PE32 executable (GUI) Intel 80386, for MS Windows
|
| 扫描器版本 | 1.0.213.174 |
| 数据库版本 | 2025-04-13 17:00:27 UTC |
我们的扫描器未检测到威胁
| 哈希类型 | 值 | 操作 |
|---|---|---|
| MD5 |
f9f523faabbc96c227c3116dbe01e9e1
|
|
| SHA1 |
282a3ec191cea23eec585e640bf2a870eef8dc1d
|
|
| SHA256 |
30b82e898ac7bb9ce693af0659bfc6faf58a5142c7fd83144224642f2b3db284
|
|
| SHA512 |
0171d2a34d6d10c7cd99305bd9bf1c9d15d6d1ec6ccd7f75b5a14c5b16b96a432280026ed24dc250c8ff439da4ec621af9df75a27903ccd25f4a56f8200ba0c7
|
|
| ImpHash |
884310b1928934402ea6fec1dbd3cf5e
|
| 图标 |
哈希: 334e0ab968e8d5bb988d0ade8dd1bf73
模糊: fd0d72b9d9254cd0d301d3a4ccf91530 dHash: f0f0e8f8f0f3d32c |
| 映像基址 | 0x00400000 |
| 入口点 | 0x00409c14 |
| 编译时间 | 1992-06-19 22:22:17 |
| 校验和 | 0x00000000 (实际: 0x00479f60) |
| 操作系统版本 | 1.0 |
| PEiD 签名 |
PE32 executable (GUI) Intel 80386, for MS Windows
|
| 数字签名 | No valid SignedData structure was found. |
| 导入 |
5 库
kernel32, user32, oleaut32, advapi32, comctl32 |
| 导出 | 0 函数 |
| 资源 | 21 资源 |
| 节 | 8 节 |
| Comments | This installation was built with Inno Setup. |
| CompanyName | Decepticon |
| FileDescription | SILENT HILL 2 Setup |
| FileVersion | |
| LegalCopyright | Decepticon |
| ProductName | SILENT HILL 2 |
| ProductVersion | v.1.1.248.905 |
| Translation | 0x0000 0x04b0 |
| 名称 | 虚拟地址 | 虚拟大小 | 原始大小 | 熵 | 特征 | MD5 |
|---|---|---|---|---|---|---|
CODE |
0x00001000 |
37,688 bytes | 37,888 bytes | 6.56 (压缩) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
0F1E58BEE0E7F7B353DE3DDE9DE0259D |
DATA |
0x0000b000 |
588 bytes | 1,024 bytes | 2.75 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
E7DD09E5875D98F57A11BE52CD2304A5 |
BSS |
0x0000c000 |
3,664 bytes | 0 bytes | 0.00 (正常) |
IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
D41D8CD98F00B204E9800998ECF8427E |
.idata |
0x0000d000 |
2,384 bytes | 2,560 bytes | 4.43 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
BB5485BF968B970E5EA81292AF2ACDBA |
.tls |
0x0000e000 |
8 bytes | 0 bytes | 0.00 (正常) |
IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
D41D8CD98F00B204E9800998ECF8427E |
.rdata |
0x0000f000 |
24 bytes | 512 bytes | 0.20 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_SHARED|IMAGE_SCN_MEM_READ
|
9BA824905BF9C7922B6FC87A38B74366 |
.reloc |
0x00010000 |
2,224 bytes | 0 bytes | 0.00 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_SHARED|IMAGE_SCN_MEM_READ
|
D41D8CD98F00B204E9800998ECF8427E |
.rsrc |
0x00011000 |
41,036 bytes | 41,472 bytes | 5.88 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_SHARED|IMAGE_SCN_MEM_READ
|
69B713FEDBD71E94300872B52503BB8F |
1 检测到较高熵(≥6.5)的节 - 可能存在压缩
| 资源类型 | 数量 | 总大小 | 百分比 |
|---|---|---|---|
| RT_ICON | 11 | 34,344 字节 | |
| RT_STRING | 6 | 2,710 字节 | |
| RT_RCDATA | 1 | 44 字节 | |
| RT_GROUP_ICON | 1 | 160 字节 | |
| RT_VERSION | 1 | 1,208 字节 | |
| RT_MANIFEST | 1 | 1,376 字节 |
| 产品 | SILENT HILL 2 |
| 描述 | SILENT HILL 2 Setup |
| 版权 | Decepticon |
70 BA E4 1D 10 D9 29 34 B6 38 CA 7B 03 CC BA BF38 25 D7 FA F8 61 AF 9E F4 90 E7 26 B5 D6 5A D547 BF 19 95 DF 8D 52 46 43 F7 DB 6D 48 0D 31 A441 91 A1 5A 39 78 DF CF 49 65 66 38 1D 4C 75 C257 64 6E 2B 55 00 23 D4 90 53 4A 55 3E AB 0D 0A7C 77 8F 22 EB 93 3A 28 79 C9 0B A2 EC 17 18 F5✓ 此文件已进行数字签名,证书链已验证。
No valid SignedData structure was found.
建议: 验证文件来源并确保它来自可信的发布者.
Gridinsoft Anti-Malware 拥有更强大的病毒扫描引擎。我们建议使用它来更准确地诊断受感染的系统。这个简短的指南将帮助您安装我们的旗舰产品以进行更准确的诊断:
下载反恶意软件此文件看起来是干净的,但定期的安全维护很重要
