| 文件名 | Performance V4.exe |
| 文件类型 |
PE32+ executable (GUI) x86-64, for MS Windows
|
| 扫描器版本 | 1.0.220.174 |
| 数据库版本 | 2025-07-13 22:00:18 UTC |
我们的扫描器未检测到威胁
| 哈希类型 | 值 | 操作 |
|---|---|---|
| MD5 |
f384f0209bb439d1cfef96801eccb62d
|
|
| SHA1 |
fc27fd2ce46b196c5952973b30a0e8be51bb2a49
|
|
| SHA256 |
3fcba413b366f79b21b7177dc8a008d635c12d70fcf889dfa43756e8b2c08135
|
|
| SHA512 |
1fbcbc7beacf2d32bc5915911cfc539961f6a7f0a632a62a1111310602e3ccbf6144778ac1ac8ba292ce5b30d5ddacf645a7202573d9f5b7030f23d031175fa7
|
|
| ImpHash |
d42595b695fc008ef2c56aabd8efd68e
|
| 图标 |
哈希: da39a9f163de6414ade5822a4cbc6fe2
模糊: 104d5172e45b1effe9d3cbfe70959b99 dHash: d0b4aaa6ce728e6c |
| 映像基址 | 0x00400000 |
| 入口点 | 0x0047c620 |
| 编译时间 | 1970-01-01 00:00:00 |
| 校验和 | 0x00000000 (实际: 0x00cb9d29) |
| 操作系统版本 | 6.1 |
| PEiD 签名 |
PE32+ executable (GUI) x86-64, for MS Windows
|
| 数字签名 | No valid SignedData structure was found. |
| 导入 |
1 库
kernel32 |
| 导出 | 0 函数 |
| 资源 | 4 资源 |
| 节 | 9 节 |
| Comments | Built using Wails (https://wails.io) |
| CompanyName | Performance V4 |
| FileDescription | Performance V4 |
| LegalCopyright | @TheTulantro @ParagonTweaks |
| ProductName | Performance V4 |
| ProductVersion | 1.0.0 |
| Translation | 0x0000 0x04b0 |
| 名称 | 虚拟地址 | 虚拟大小 | 原始大小 | 熵 | 特征 | MD5 |
|---|---|---|---|---|---|---|
.text |
0x00001000 |
4,458,705 bytes | 4,459,008 bytes | 6.18 (正常) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
5E390206BA4C3ACF701D35D44F2050BD |
.rdata |
0x00442000 |
5,964,608 bytes | 5,964,800 bytes | 6.11 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
121BD16822689E48FAB918A7747D0122 |
.data |
0x009f3000 |
3,009,936 bytes | 2,650,112 bytes | 7.52 (打包/加密) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
CA4B3C1D1FFB80A7BC80FD27A1A685D1 |
.pdata |
0x00cd2000 |
111,768 bytes | 112,128 bytes | 5.54 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
4DFCBD82D0E00DC21DD43493067D5BE4 |
.xdata |
0x00cee000 |
180 bytes | 512 bytes | 1.76 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
7EAC35D22E211035520329DDADBDA4DF |
.idata |
0x00cef000 |
1,342 bytes | 1,536 bytes | 4.02 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
A13C1B5198E081F7311FB598818B77C3 |
.reloc |
0x00cf0000 |
99,596 bytes | 99,840 bytes | 5.44 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
3F15037A8F7B5CED36EBB9E169DE35C2 |
.symtab |
0x00d09000 |
4 bytes | 512 bytes | 0.02 (正常) |
IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
07B5472D347D42780469FB2654B7FC54 |
.rsrc |
0x00d0a000 |
32,896 bytes | 33,280 bytes | 7.89 (打包/加密) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
84D6F315E0DC445171BBF6815EFC8A30 |
2 检测到高熵(≥7.5)的节 - 可能存在打包/加密
| 资源类型 | 数量 | 总大小 | 百分比 |
|---|---|---|---|
| RT_ICON | 1 | 30,442 字节 | |
| RT_GROUP_ICON | 1 | 20 字节 | |
| RT_VERSION | 1 | 660 字节 | |
| RT_MANIFEST | 1 | 1,453 字节 |
| 产品 | Performance V4 |
| 描述 | Performance V4 |
| 版权 | @TheTulantro @ParagonTweaks |
5B 16 02 A6 5C 10 8C B5 47 A1 5F 08 9A 33 5C 5B7A 23 AE DA 53 69 96 0F 91 C8 3E 5C F4 C7 E3 3F3A 52 6A 2C 84 CE 55 E6 1D 65 FC CC 12 D8 E9 8936 C2 B0 BD 7C 1B 3A E7 A3 B3 DD 36 CB C9 75 6833 00 00 01 E2 F1 7D 92 02 0E 49 F8 7F 00 00 00 00 01 E261 0E 90 D2 00 00 00 00 00 0364 57 97 41 81 D1 09 95 4F 1C 10 95 8C 65 4E 6333 00 00 01 5B 7C B0 BA 34 67 37 C1 A7 00 00 00 00 01 5B61 09 81 2A 00 00 00 00 00 02✓ 此文件已进行数字签名,证书链已验证。
No valid SignedData structure was found.
建议: 验证文件来源并确保它来自可信的发布者.
Gridinsoft Anti-Malware 拥有更强大的病毒扫描引擎。我们建议使用它来更准确地诊断受感染的系统。这个简短的指南将帮助您安装我们的旗舰产品以进行更准确的诊断:
下载反恶意软件此文件看起来是干净的,但定期的安全维护很重要
