| 文件名 | libnettle-8.dll |
| 文件类型 |
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
| 扫描器版本 | 1.0.213.174 |
| 数据库版本 | 2025-04-13 03:00:33 UTC |
我们的扫描器未检测到威胁
| 哈希类型 | 值 | 操作 |
|---|---|---|
| MD5 |
4337b72b1b6e0557fb7a5d9343b63637
|
|
| SHA1 |
401bd14438f32245779204eff0cb1dc239f5c550
|
|
| SHA256 |
7259664aa70af52b15c9f5874509c31b43946d21c3a3dfef2bec4fe3075fa2da
|
|
| SHA512 |
b84a7b7a83b7c6d01c69cb13061912a99719bbedb2242ef69c0332b95fe1cff969931c2793b5fa464a2630fdf8ce6b4a359c7e1b1c29f82ae962eabb68b36a31
|
|
| ImpHash |
ec4838d1380d082a7cd6698f3928f28a
|
| 映像基址 | 0x68a40000 |
| 入口点 | 0x68a4121a |
| 编译时间 | 2023-07-02 20:48:28 |
| 校验和 | 0x0099a3ab (实际: 0x0099a3ab) |
| 操作系统版本 | 4.0 |
| PEiD 签名 |
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
| 数字签名 | No valid SignedData structure was found. |
| 导入 |
3 库
KERNEL32, ucrtbase, libgcc_s_dw2-1 |
| 导出 | 562 函数 |
| 资源 | 0 资源 |
| 节 | 20 节 |
| 名称 | 虚拟地址 | 虚拟大小 | 原始大小 | 熵 | 特征 | MD5 |
|---|---|---|---|---|---|---|
.text |
0x00001000 |
184,244 bytes | 184,320 bytes | 6.37 (正常) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
2C9FDF1A0F5C3FD980E3D03A0458A0C1 |
.data |
0x0002e000 |
100 bytes | 512 bytes | 1.30 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
D6728E4F513488C7FB7FC3028AC5A665 |
.rdata |
0x0002f000 |
85,952 bytes | 86,016 bytes | 7.26 (压缩) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
47742439BD55D6A6DD3484A37658CCC6 |
/4 |
0x00044000 |
30,076 bytes | 30,208 bytes | 4.74 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
0FB2017EF8DD844F7A285F87775DF5F7 |
.bss |
0x0004c000 |
140 bytes | 0 bytes | 0.00 (正常) |
IMAGE_SCN_CNT_UNINITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
D41D8CD98F00B204E9800998ECF8427E |
.edata |
0x0004d000 |
18,970 bytes | 19,456 bytes | 5.33 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
92DD5EB2929C9B433F363D035D143165 |
.idata |
0x00052000 |
1,612 bytes | 2,048 bytes | 4.33 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
8E702BFE3DA7A130EF280E298D68621F |
.CRT |
0x00053000 |
44 bytes | 512 bytes | 0.21 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
989A7B0DB7B5DFFB4E79FDE13DC90B2E |
.tls |
0x00054000 |
8 bytes | 512 bytes | 0.00 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
BF619EAC0CDF3F68D496EA9344137E8B |
.reloc |
0x00055000 |
4,944 bytes | 5,120 bytes | 6.57 (压缩) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
1E2C5C840DD12ADD9EB5B1A9F02A9E9B |
/14 |
0x00057000 |
7,440 bytes | 7,680 bytes | 2.86 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
1621B13B0B7B859C000822EFB4D04C94 |
/29 |
0x00059000 |
338,479 bytes | 338,944 bytes | 5.65 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
BBC76D076E71BF448EC9D403F7FDC912 |
/41 |
0x000ac000 |
78,460 bytes | 78,848 bytes | 4.73 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
2D32ECAA909939017F068A103D01A670 |
/55 |
0x000c0000 |
145,086 bytes | 145,408 bytes | 5.33 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
F06E6DE7AF3DA396BE3617DDEF67ED03 |
/67 |
0x000e4000 |
56 bytes | 512 bytes | 0.70 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
0BEE46952CB1977A920BCF608ED3C28B |
/80 |
0x000e5000 |
1,605 bytes | 2,048 bytes | 4.31 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
93F7AF1925E3B8C866856DDC4DAE86A2 |
/91 |
0x000e6000 |
185,171 bytes | 185,344 bytes | 4.88 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
07131756721E7E7E71F2332BBD943362 |
/107 |
0x00114000 |
214,058 bytes | 214,528 bytes | 6.20 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
77FE06438A28D85490F29940B23765A1 |
/123 |
0x00149000 |
8,549,527 bytes | 8,549,888 bytes | 5.66 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
7AF9B794A917EC988F8E47E552A677D7 |
/136 |
0x00971000 |
7,974 bytes | 8,192 bytes | 5.70 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
D06B5CF44732343255F1227AFE4C6733 |
2 检测到较高熵(≥6.5)的节 - 可能存在压缩
此文件未进行数字签名。
⚠ 此文件缺少数字签名或证书链无法验证。
执行来自未知来源的未签名文件时请谨慎。
No valid SignedData structure was found.
建议: 验证文件来源并确保它来自可信的发布者.
Gridinsoft Anti-Malware 拥有更强大的病毒扫描引擎。我们建议使用它来更准确地诊断受感染的系统。这个简短的指南将帮助您安装我们的旗舰产品以进行更准确的诊断:
下载反恶意软件此文件看起来是干净的,但定期的安全维护很重要
保持无恶意软件:使用 Gridinsoft 反恶意软件 保护您的 PC
Gridinsoft 反恶意软件正是如此——提供强大、用户友好的解决方案,让您安心,并不断更新以应对最新威胁。由网络安全专家设计,它提供实时保护和轻松删除恶意软件。这不仅仅是检测威胁;它是通过不间断的安全来增强您的数字生活。试一试,体验无忧浏览的感觉!
