| 文件名 | Set-up.exe |
| 文件类型 |
PE32 executable (GUI) Intel 80386, for MS Windows
|
| 扫描器版本 | 1.0.216.174 |
| 数据库版本 | 2025-05-10 21:00:20 UTC |
我们的扫描器未检测到威胁
| 哈希类型 | 值 | 操作 |
|---|---|---|
| MD5 |
833cd9c62c4bdff457d5d3e2c7f1b80b
|
|
| SHA1 |
8180be1d39e002fde22be367c045516f994d8eba
|
|
| SHA256 |
8ef6b1a489007e50c80d418e6f32d9ff9f650c8107bef90a4fea96de77d73818
|
|
| SHA512 |
7a151c62e44e2cce2e77cb9abbf5b8ddcf0a674582fa373865961ca9c8189ce3ec6073f4ea6c121aef5a415bfa0586cdbcd2d38ba722d4adc46d85404445f506
|
|
| ImpHash |
27c61018294ebb41cdb28917f0cfb947
|
| 图标 |
哈希: 76485a01f9ad2493e8ddb744a3104796
模糊: 10fc52a9c25adee1de6a652625964346 dHash: e8ccccc8e8ead071 |
| 映像基址 | 0x00400000 |
| 入口点 | 0x0085c1d8 |
| 编译时间 | 2025-03-20 08:11:32 |
| 校验和 | 0x092e44da (实际: 0x01a9abfa) |
| 操作系统版本 | 6.0 |
| PEiD 签名 |
PE32 executable (GUI) Intel 80386, for MS Windows
|
| 数字签名 | The expected hash does not match the digest in SpcInfo |
| 导入 | 17 库 |
| 导出 | 2 函数 |
| 资源 | 176 资源 |
| 节 | 12 节 |
| CompanyName | Van Loo Software ™ |
| FileDescription | NetSurfer Prometheus Browser x86 |
| FileVersion | 2.1.2.2 |
| InternalName | NetSurfer Prometheus Browser x86 |
| LegalCopyright | © 2002 - 2037 SSuite Office Software |
| LegalTrademarks | Van Loo Software ™ |
| OriginalFilename | NetSurfer Prometheus - Galaxy Class x86 |
| ProgramID | com.ssuiteoffice.NetSurfer |
| ProductName | NetSurfer Prometheus Browser x86 |
| ProductVersion | 2.1.2.2 |
| Comments | visit us at www.ssuiteoffice.com |
| SpecialBuild | Replaces all previous NetSurfer Browser releases |
| Translation | 0x0409 0x04e4 |
| 名称 | 虚拟地址 | 虚拟大小 | 原始大小 | 熵 | 特征 | MD5 |
|---|---|---|---|---|---|---|
.text |
0x00001000 |
4,552,352 bytes | 4,552,704 bytes | 6.46 (正常) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
4560CF1C587426BA90FFD840706FC23E |
.itext |
0x00459000 |
13,276 bytes | 13,312 bytes | 6.52 (压缩) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
27DB81BDD691DDFC8FA1D626710B3691 |
.data |
0x0045d000 |
48,544 bytes | 48,640 bytes | 6.12 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
7E1A913BC472DD3DDD8E8BB96D0E4EF3 |
.bss |
0x00469000 |
111,032 bytes | 0 bytes | 0.00 (正常) |
IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
D41D8CD98F00B204E9800998ECF8427E |
.idata |
0x00485000 |
15,696 bytes | 15,872 bytes | 5.09 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
667BAB8F06BD3A32D258F5A8CACCEA35 |
.didata |
0x00489000 |
3,858 bytes | 4,096 bytes | 4.26 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
283AAD0535EDEBA56B0D1EC3519B3174 |
.edata |
0x0048a000 |
114 bytes | 512 bytes | 1.35 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
1E64373B3FF3E663DDA7EB98DE9C1425 |
.tls |
0x0048b000 |
92 bytes | 0 bytes | 0.00 (正常) |
IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
D41D8CD98F00B204E9800998ECF8427E |
.rdata |
0x0048c000 |
93 bytes | 512 bytes | 1.38 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
949175DA1C75EC4C5FF67FD0332EEF02 |
.reloc |
0x0048d000 |
375,084 bytes | 375,296 bytes | 6.72 (压缩) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
BB6F31088C02EC56AB42FB9ABF88D582 |
.rsrc |
0x004e9000 |
5,937,152 bytes | 5,937,152 bytes | 7.51 (打包/加密) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
6293B037705559E382F42F72652BCE5D |
.debug |
0x00a93000 |
16,887,808 bytes | 16,887,808 bytes | 5.54 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
6EF6BED907635A9E3ACD653D89966A49 |
1 检测到高熵(≥7.5)的节 - 可能存在打包/加密
2 检测到较高熵(≥6.5)的节 - 可能存在压缩
| 资源类型 | 数量 | 总大小 | 百分比 |
|---|---|---|---|
| VCLSTYLE | 35 | 3,970,567 字节 | |
| RT_CURSOR | 10 | 3,080 字节 | |
| RT_BITMAP | 27 | 9,688 字节 | |
| RT_ICON | 1 | 113,878 字节 | |
| RT_DIALOG | 2 | 164 字节 | |
| RT_STRING | 40 | 38,224 字节 | |
| RT_RCDATA | 48 | 1,786,248 字节 | |
| RT_GROUP_CURSOR | 10 | 200 字节 | |
| RT_GROUP_ICON | 1 | 20 字节 | |
| RT_VERSION | 1 | 1,320 字节 | |
| RT_MANIFEST | 1 | 1,803 字节 |
此文件未进行数字签名。
⚠ 此文件缺少数字签名或证书链无法验证。
执行来自未知来源的未签名文件时请谨慎。
The expected hash does not match the digest in SpcInfo
建议: 验证文件来源并确保它来自可信的发布者.
Gridinsoft Anti-Malware 拥有更强大的病毒扫描引擎。我们建议使用它来更准确地诊断受感染的系统。这个简短的指南将帮助您安装我们的旗舰产品以进行更准确的诊断:
下载反恶意软件此文件看起来是干净的,但定期的安全维护很重要
