在线病毒检测器 | v.1.0.190.174 |
数据库版本: | 2024-09-20 23:00:18 |
这是一个通用检测名称,用于识别具有特洛伊木马特征的潜在有害或可疑文件或程序。这是一种伪装成合法或良性程序但包含恶意代码或功能的恶意软件。
File | Squad-Hack.exe |
已检查 | 2024-09-20 20:33:24 |
MD5 | a7cab9364044687d2faca331469aeaed |
SHA1 | 3a6f7751d27083c2160a260be94e206213c50e86 |
SHA256 | 93fcbf091adcc6424f9e6920c2456024b4aff90f95a788c7ba50738e2f7de842 |
SHA512 | 2d8aa9409c11171bd7cd9a892307e6fc7fc382318df4866bd7b8502b5c48774926cb95a8db21ce2d66a89d8448f25e6a071e148a6c5e750af5c4648b4d1c9c18 |
Imphash | f34d5f2d4577ed6d9ceec516c1f5a744 |
File Size | 340992 bytes |
Gridinsoft能够识别并消除Spy.Win32.Gen.tr,无需进一步的用户干预。
Translation | 0x0000 0x04b0 |
Comments | Knifers cyanotype |
CompanyName | Hostelling seabag phoneye |
FileDescription | Outwardnesses disciform |
FileVersion | 1.0.0.0 |
InternalName | MSG.exe |
LegalCopyright | Copyright © 2024 |
OriginalFilename | MSG.exe |
ProductName | Entertainment paloverdes managed |
ProductVersion | 1.0.0.0 |
Assembly Version | 1.0.0.0 |
Image Base: | 0x00400000 |
Entry Point: | 0x004547fe |
Compilation: | 2024-08-13 20:01:46 |
Checksum: | 0x00000000 (Actual: 0x000602c8) |
OS Version: | 4.0 |
PEiD: | PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows |
Sign: | The PE file does not contain a certificate table. |
Sections: | 3 |
Imports: | mscoree, |
Exports: | 0 |
Resources: | 2 |
名称 | 虚拟地址 | 虚拟大小 | 原始大小 | MD5 | 熵 |
---|---|---|---|---|---|
.text | 0x00002000 | 0x00052804 | 0x00052a00 | 259dcef06d598e59e6744abcc74b0a4e | 7.98 |
.rsrc | 0x00056000 | 0x00000600 | 0x00000600 | 36c3f310e14142c9653b36457245dff3 | 4.22 |
.reloc | 0x00058000 | 0x0000000c | 0x00000200 | dbe2ecff42d564dda24d13e850f40738 | 0.08 |