在线病毒检测器 | v.1.0.179.174 |
数据库版本: | 2024-06-21 07:00:38 |
STOP/Djvu勒索软件,也简称为STOP勒索软件或Djvu勒索软件,是一种恶意软件,它加密受害者计算机上的文件,并要求赎金以解密这些文件。这种勒索软件变种已经活跃了数年,影响了众多用户和组织。
File | game.exe |
已检查 | 2024-06-21 04:57:45 |
MD5 | 9b3e38e023020228484dcc008d6f6e52 |
SHA1 | 16a218483c71a8edeb7c43a9ff3696e53c586ef2 |
SHA256 | 567ed29376b1cdfc820544d6d8e38d58187476a0b911226d5cb8e95f69dcba6f |
SHA512 | 0f46c3509890560a4c753efb5d6b940b545a2619b277c536fae8cb2dab280def9afd61b7d7d7e0ab08a879dcf2288705e92a3066b37da1a1c2b0e0ca64e98399 |
Imphash | 1c3aebb846cbbabbc7cfe5a60c0dd715 |
File Size | 844288 bytes |
Gridinsoft能够识别并消除Ransom.Win32.STOP.tr,无需进一步的用户干预。
FileVersions | 76.51.27.10 |
InternalName | sadf |
FileDescription | sadf |
LegalCopyright | Copyrights (C) 2023, sadf |
OriginalFilenames | asdf |
ProductName | asdf |
ProductVersions | 8.22.79 |
Translation | 0x16fe 0x06da |
30e901e854a17b2ec09b301007fad46a 1f417353671ead591aa2e83badcb3843 92a2c8d2a482d468 |
|
Image Base: | 0x00400000 |
Entry Point: | 0x0040308b |
Compilation: | 2023-03-23 07:42:51 |
Checksum: | 0x000d71b0 (Actual: 0x000d71b0) |
OS Version: | 5.1 |
PEiD: | PE32 executable (GUI) Intel 80386, for MS Windows |
Sign: | The PE file does not contain a certificate table. |
Sections: | 4 |
Imports: | KERNEL32, |
Exports: | 0 |
Resources: | 72 |
名称 | 虚拟地址 | 虚拟大小 | 原始大小 | MD5 | 熵 |
---|---|---|---|---|---|
.text | 0x00001000 | 0x0000a3f0 | 0x0000a400 | 509e878b9b106be477f3b73e4b4eb732 | 6.82 |
.rdata | 0x0000c000 | 0x00002e48 | 0x00003000 | 593d913dd9a0b3054b5b79b9080c62e0 | 4.84 |
.data | 0x0000f000 | 0x000a12c0 | 0x00094000 | 9e6e4bfd39bd963c33395b2a906218b3 | 7.97 |
.rsrc | 0x000b1000 | 0x0002c8f0 | 0x0002ca00 | 7e268806f15cb169f467b5ac34ec2b4f | 4.84 |