在线病毒检测器 | v.1.0.182.174 |
数据库版本: | 2024-07-16 02:00:19 |
这是一个通用检测名称,用于识别具有特洛伊木马特征的潜在有害或可疑文件或程序。这是一种伪装成合法或良性程序但包含恶意代码或功能的恶意软件。
File | juego_online.exe |
已检查 | 2024-07-15 23:44:34 |
MD5 | b2887e971c275262d7160e0624934fc3 |
SHA1 | 12fde1e640fa51c66c2c14ed199e633ecacdaf58 |
SHA256 | 3b15cb6d654e8b2e1f8cbe04b1305d68a2172648ff5ab92e5f4197922aac7964 |
SHA512 | 89ea3db5760085f0e1b3feb0389d1aa7738737d88f1c1f5959a556d5201dbb7fb160a22381ff9bca1027d032f949ad81998af2dd730738a8c6cc51104bd2f32e |
Imphash | bc5ce990cf54f8d435a68eb97512f73e |
File Size | 10007245 bytes |
Gridinsoft能够识别并消除Malware.Win32.Gen.sm!s4,无需进一步的用户干预。
206a70847e01a66a21542601f41b01c2 afc6d0b4c3ff05e0eeb32c6107b9f9fc 0c0e2d26276f0d08 |
|
Image Base: | 0x00400000 |
Entry Point: | 0x00401000 |
Compilation: | 2007-05-22 04:59:14 |
Checksum: | 0x00000000 (Actual: 0x0099103c) |
OS Version: | 4.0 |
PEiD: | PE32 executable (GUI) Intel 80386, for MS Windows |
Sign: | The PE file does not contain a certificate table. |
Sections: | 4 |
Imports: | ADVAPI32, KERNEL32, COMCTL32, COMDLG32, GDI32, SHELL32, USER32, OLE32, |
Exports: | 0 |
Resources: | 15 |
名称 | 虚拟地址 | 虚拟大小 | 原始大小 | MD5 | 熵 |
---|---|---|---|---|---|
.text | 0x00001000 | 0x00014000 | 0x00013600 | c5df2bcf4cb444a9ce3abf40dc2ae79f | 6.44 |
.data | 0x00015000 | 0x00007000 | 0x00000a00 | fe3e541d125dbe299f892385c2f9e9c8 | 4.92 |
.idata | 0x0001c000 | 0x00001000 | 0x00001000 | 37eade5359d82bcd800d9cf089c501ff | 5.12 |
.rsrc | 0x0001d000 | 0x00017650 | 0x00017800 | 805303a57bbc3215e4595e5de32a4cfa | 7.04 |