| 在线病毒检测器 | v.1.0.186.174 |
| 数据库版本: | 2024-09-08 09:00:29 |
特洛伊木马Agent是一种恶意软件,伪装成合法的文件或程序,以在受感染的计算机上执行各种有害操作,如数据窃取或网络犯罪分子的远程控制。
| File | steam_api.dll |
| 已检查 | 2024-09-08 06:55:45 |
| MD5 | 11c18d9b18f541b9e773229f0616d50d |
| SHA1 | 6bd51dd630c91eb6c867183ef92fce1279b7f5b1 |
| SHA256 | 5b7fea0d99396461eb4198c9c0f30ac75f0870f0c403b3f453b60c73dfc1c89d |
| SHA512 | d0aa48a8bf06b66885b9038ba1aaa9621f0899861830c5e0849c02e8459ca01f12c5b359321b1a6efc93f9515b3aa0a276d9572cac481cabce81b05a8777ecb6 |
| Imphash | d4f26e1f19a810bf92ac9ac81d45efeb |
| File Size | 1094148 bytes |
Gridinsoft能够识别并消除Trojan.Win32.Agent.dg,无需进一步的用户干预。
| CompanyName | *!ReLOADeD!* |
| FileDescription | Steam API |
| FileVersion | 4,6,0,0 |
| InternalName | steam_api |
| LegalCopyright | *!ReLOADeD!* |
| OriginalFilename | steam_api |
| ProductName | Steam API |
| ProductVersion | 4,6,0,0 |
| Translation | 0x0409 0x04b0 |
| Image Base: | 0x10000000 |
| Entry Point: | 0x10033cfa |
| Compilation: | 2015-03-08 17:02:20 |
| Checksum: | 0x00000000 (Actual: 0x0010dbf9) |
| OS Version: | 6.0 |
| PEiD: | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows |
| Sign: | The PE file does not contain a certificate table. |
| Sections: | 7 |
| Imports: | KERNEL32, USER32, GDI32, ADVAPI32, SHELL32, WINMM, |
| Exports: | 710 |
| Resources: | 4 |
| 名称 | 虚拟地址 | 虚拟大小 | 原始大小 | MD5 | 熵 |
|---|---|---|---|---|---|
| .text | 0x00001000 | 0x0003eaab | 0x0003ec00 | 1d7668bcd590024784f410de75fc2631 | 6.55 |
| .rdata | 0x00040000 | 0x000146e0 | 0x00014800 | f4b982819b180026fca4097899c4396b | 5.58 |
| .data | 0x00055000 | 0x00003400 | 0x00001600 | 587af2ac6a10f60195e7fde71311239e | 3.68 |
| .rsrc | 0x00059000 | 0x0001ccd8 | 0x0001ce00 | 19922d55cd9a9cb52a85a1238516a57d | 5.67 |
| .RLD0 | 0x00076000 | 0x00003abc | 0x00003c00 | fbee56aae91c06550bbc3f4b81f38561 | 6.74 |
| .RLD1 | 0x0007a000 | 0x00091c61 | 0x00091e00 | 6dd37ca135e33a2a3d6e8846d29a5f48 | 7.90 |
| .reloc | 0x0010c000 | 0x000039ec | 0x00003a00 | 849ae606df2c0aa525c12587381aa4c8 | 6.41 |
