在线病毒检测器 | v.1.0.185.174 |
数据库版本: | 2024-08-19 09:00:14 |
“Patcher”通常指的是一种用于修改或“修补”其他软件的软件或工具,通常是为了绕过许可限制或启用未经授权的使用。这些工具通常与软件盗版和非法分发相关联。
File | wfilmorav133127152-zmco.exe |
已检查 | 2024-08-19 06:29:12 |
MD5 | 04958dae6bf7fcff59eb4424422cac67 |
SHA1 | def60327ca9dc6b6c935cb7ba8c777a4a5442c56 |
SHA256 | a9261df911c22465098c3d82a4a422751fb470edef380881c07cee44e4fc41de |
SHA512 | 57dd35ffb3f2f5486f3570357ba5b2345f8586049f2f0843a11ebcf05e977d1e0ab2da202b2f88884b4e22953670df917e884fc973908180d9aa57b50a6e8f2c |
Imphash | f998c3a833cca013c7d8886746579fb5 |
File Size | 38102528 bytes |
Gridinsoft能够识别并消除Hack.Win32.Patcher.cl,无需进一步的用户干预。
790085edb50eeff302202bce64fd72da 13ffa692814b8b2839341948a9a9213e 80e0709a5e5a5910 |
|
Image Base: | 0x00400000 |
Entry Point: | 0x00401000 |
Compilation: | 2011-02-22 19:44:08 |
Checksum: | 0x00000000 (Actual: 0x024647ac) |
OS Version: | 4.0 |
PEiD: | PE32 executable (GUI) Intel 80386, for MS Windows |
Sign: | The PE file does not contain a certificate table. |
Sections: | 6 |
Imports: | kernel32, user32, shell32, gdi32, advapi32, comdlg32, oleaut32, |
Exports: | 0 |
Resources: | 46 |
名称 | 虚拟地址 | 虚拟大小 | 原始大小 | MD5 | 熵 |
---|---|---|---|---|---|
0x00001000 | 0x00009000 | 0x00003400 | 6841d1cad31b2357f9187d3c7b6306ec | 7.99 | |
0x0000a000 | 0x00001000 | 0x00000e00 | 4e2d2fc81242bf2c8a05a22022ceb123 | 7.95 | |
0x0000b000 | 0x00014000 | 0x00000400 | b5e67ff5b7abb888440074f57a0c952f | 7.81 | |
.rsrc | 0x0001f000 | 0x025f7000 | 0x02403c00 | bd769af52a5ec06c1406a856a5eec8da | 8.00 |
.data | 0x02616000 | 0x0004e000 | 0x0004e000 | e059e14079f5135707d1e275f44b1804 | 7.75 |
.adata | 0x02664000 | 0x00001000 | 0x00000000 | d41d8cd98f00b204e9800998ecf8427e | 0.00 |