在线病毒检测器 | v.1.0.181.174 |
数据库版本: | 2024-07-09 19:00:30 |
基于人工智能的病毒检测是传统基于签名的防病毒方法的有价值的补充。基于签名的方法可能难以检测新的或多态的恶意软件变种,使人工智能成为现代网络安全中的重要工具,用于主动威胁检测和缓解。
File | screenshot.exe |
已检查 | 2024-07-09 16:59:56 |
MD5 | 555f76a6e29390cdd9cf0ef94771e840 |
SHA1 | d2fa0a7d07af1c45fbdfee04acb6541b85cc7e8d |
SHA256 | 62d6215e3fda2c26183e51d14f10464e73c5f5652261986e5bfb0b93b98702a6 |
SHA512 | ca92651722237273e0a3973d8a99ac179573c1335a96a570b429e4ebe99935b2235e8a217b6ee8e9687819d5b2467eda2ac10fbf1aa0a5e9dc90a8c981f6892c |
Imphash | 456e8615ad4320c9f54e50319a19df9c |
File Size | 7753276 bytes |
Gridinsoft能够识别并消除Malware.Win64.AI.oa!s1,无需进一步的用户干预。
CompanyName | Microsoft Corporation |
FileDescription | IE Per-User Show IE Icon Utility |
FileVersion | 11.00.19041.4474 (WinBuild.160101.0800) |
InternalName | IE4USHOWIE |
LegalCopyright | © Microsoft Corporation. All rights reserved. |
OriginalFilename | IE4USHOWIE.EXE |
ProductName | Internet Explorer |
ProductVersion | 11.00.19041.4474 |
Translation | 0x0409 0x04b0 |
Image Base: | 0x140000000 |
Entry Point: | 0x14000c0d0 |
Compilation: | 2024-07-09 07:22:30 |
Checksum: | 0x00770195 (Actual: 0x00766f35) |
OS Version: | 6.0 |
PEiD: | PE32+ executable (GUI) x86-64, for MS Windows |
Sign: | The expected hash does not match the digest in SpcInfo |
Sections: | 6 |
Imports: | USER32, COMCTL32, KERNEL32, ADVAPI32, GDI32, |
Exports: | 0 |
Resources: | 2 |
名称 | 虚拟地址 | 虚拟大小 | 原始大小 | MD5 | 熵 |
---|---|---|---|---|---|
.text | 0x00001000 | 0x00029210 | 0x00029400 | aca64598002ecff9eefbc96554edf015 | 6.48 |
.rdata | 0x0002b000 | 0x00012642 | 0x00012800 | 710ed8f2b3565f3e867c5053a5abb577 | 5.75 |
.data | 0x0003e000 | 0x000073d8 | 0x00000e00 | d0a288978c66419b180b35f625b6dce7 | 1.84 |
.pdata | 0x00046000 | 0x00002208 | 0x00002400 | 74cf3ea22e0a1756984435d6f80f7da5 | 5.26 |
.rsrc | 0x00049000 | 0x00000940 | 0x00000a00 | e439bd844aec09a8d1da6bbf94d8d9d0 | 5.14 |
.reloc | 0x0004a000 | 0x00000768 | 0x00000800 | 71de9271648326ec88350e903470cf3e | 5.28 |