| 文件名 | Nicky Romero - Kickstart 2.0 Setup.exe |
| 文件类型 |
PE32 executable (GUI) Intel 80386, for MS Windows
|
| 扫描器版本 | 1.0.216.174 |
| 数据库版本 | 2025-05-02 21:00:12 UTC |
我们的扫描器未检测到威胁
| 哈希类型 | 值 | 操作 |
|---|---|---|
| MD5 |
677852451fd2ac62bd984e36c5bd1ec7
|
|
| SHA1 |
d44fda95330ba804d4a3530a267405be131c0942
|
|
| SHA256 |
8398bdba68d7520ed4743cd27839edbf7fb4591986ac6b485ca9308ba7400ab6
|
|
| SHA512 |
83e1bb7606319717e9c21efbde35f343d49b5ff8847351c87c84d6c0c43965e98960d45daf0cb01d50188c996b64f0f0bd0e7d22cd9cac1481f40f24d599423d
|
|
| ImpHash |
5a594319a0d69dbc452e748bcf05892e
|
| 图标 |
哈希: 30adcb5c0b2e3c35eaec2c110733c9f8
模糊: c98f96d6ffe5af8d4eb0870c1dc20826 dHash: 92e0b496a6cada72 |
| 映像基址 | 0x00400000 |
| 入口点 | 0x004b5eec |
| 编译时间 | 2020-05-21 05:56:23 |
| 校验和 | 0x0056d414 (实际: 0x0056d414) |
| 操作系统版本 | 6.0 |
| PEiD 签名 |
PE32 executable (GUI) Intel 80386, for MS Windows
|
| 数字签名 | OK |
| 导入 |
7 库
kernel32, comctl32, version, user32, oleaut32, netapi32, advapi32 |
| 导出 | 3 函数 |
| 资源 | 21 资源 |
| 节 | 10 节 |
| Comments | This installation was built with Inno Setup. |
| CompanyName | Cableguys |
| FileDescription | Kickstart 2 Setup |
| FileVersion | |
| LegalCopyright | |
| OriginalFileName | |
| ProductName | Kickstart 2 |
| ProductVersion | 2.0 |
| Translation | 0x0000 0x04b0 |
| 名称 | 虚拟地址 | 虚拟大小 | 原始大小 | 熵 | 特征 | MD5 |
|---|---|---|---|---|---|---|
.text |
0x00001000 |
734,724 bytes | 735,232 bytes | 6.35 (正常) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
364BC619A502D7F0A97ABA31E34B82D2 |
.itext |
0x000b5000 |
5,764 bytes | 6,144 bytes | 5.97 (正常) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
282B489EAC439B258C98EC516C03C2CD |
.data |
0x000b7000 |
14,244 bytes | 14,336 bytes | 5.04 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
342785CF6BA6DE905CA393413E77B906 |
.bss |
0x000bb000 |
28,064 bytes | 0 bytes | 0.00 (正常) |
IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
D41D8CD98F00B204E9800998ECF8427E |
.idata |
0x000c2000 |
3,894 bytes | 4,096 bytes | 4.90 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
A73D686F1E8B9BB06EC767721135E397 |
.didata |
0x000c3000 |
420 bytes | 512 bytes | 2.76 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
41B8CE23DD243D14BEEBC71771885C89 |
.edata |
0x000c4000 |
154 bytes | 512 bytes | 1.87 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
43F8D31E224BBD887C839F21E694B898 |
.tls |
0x000c5000 |
24 bytes | 0 bytes | 0.00 (正常) |
IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
D41D8CD98F00B204E9800998ECF8427E |
.rdata |
0x000c6000 |
93 bytes | 512 bytes | 1.38 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
8F2F090ACD9622C88A6A852E72F94E96 |
.rsrc |
0x000c7000 |
18,432 bytes | 18,432 bytes | 4.42 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
6C5B3B9BA340D13ABAEF091E293DA653 |
| 资源类型 | 数量 | 总大小 | 百分比 |
|---|---|---|---|
| RT_ICON | 4 | 4,640 字节 | |
| RT_STRING | 11 | 8,040 字节 | |
| RT_RCDATA | 3 | 768 字节 | |
| RT_GROUP_ICON | 1 | 62 字节 | |
| RT_VERSION | 1 | 1,412 字节 | |
| RT_MANIFEST | 1 | 1,830 字节 |
| 产品 | Kickstart 2 |
| 描述 | Kickstart 2 Setup |
04 00 00 00 00 01 21 58 53 08 A278 03 18 42 45 70 8A 41 CF 6F 01 B8 EE B4 A9 5477 BD 0E 05 B7 59 0B B6 1D 47 61 53 1E 3F 75 ED30 0F 6F AC DD 66 98 74 7C A9 46 36 A7 78 2D B98C 77 A0 00 8F F4 D1 B0 C6 3D 9F 3A 48 83 8D 6B53 3E B6 10 3B 32 7C 4A E7 CB 5D FD0B FB 50 C8 E9 8A 00 00 00 010C 9A 55 AE C7 67 00 00 00 1622 BD 6B 75 9A 90 00 00 00 012B 30 4D 31 9E AD 00 00 00 02✓ 此文件已进行数字签名,证书链已验证。
OK
Gridinsoft Anti-Malware 拥有更强大的病毒扫描引擎。我们建议使用它来更准确地诊断受感染的系统。这个简短的指南将帮助您安装我们的旗舰产品以进行更准确的诊断:
下载反恶意软件此文件看起来是干净的,但定期的安全维护很重要
