| 反病毒引擎 | 版本 | 最後更新 | 掃瞄結果 | | a-squared | 4.0.0.101 | 2009.04.18 | Trojan-Dropper!IK | | AhnLab-V3 | 5.0.0.2 | 2009.04.18 | - | | AntiVir | 7.9.0.143 | 2009.04.17 | TR/Dropper.Gen | | Antiy-AVL | 2.0.3.1 | 2009.04.17 | - | | Authentium | 5.1.2.4 | 2009.04.18 | - | | Avast | 4.8.1335.0 | 2009.04.18 | - | | AVG | 8.5.0.287 | 2009.04.18 | - | | BitDefender | 7.2 | 2009.04.18 | - | | CAT-QuickHeal | 10.00 | 2009.04.18 | - | | ClamAV | 0.94.1 | 2009.04.18 | - | | Comodo | 1120 | 2009.04.18 | - | | DrWeb | 4.44.0.09170 | 2009.04.18 | - | | eSafe | 7.0.17.0 | 2009.04.13 | - | | eTrust-Vet | 31.6.6455 | 2009.04.14 | - | | F-Prot | 4.4.4.56 | 2009.04.17 | - | | F-Secure | 8.0.14470.0 | 2009.04.18 | - | | Fortinet | 3.117.0.0 | 2009.04.18 | - | | GData | 19 | 2009.04.18 | - | | Ikarus | T3.1.1.49.0 | 2009.04.18 | Trojan-Dropper | | K7AntiVirus | 7.10.707 | 2009.04.17 | - | | Kaspersky | 7.0.0.125 | 2009.04.18 | - | | McAfee | 5588 | 2009.04.18 | - | | McAfee+Artemis | 5588 | 2009.04.18 | Generic!Artemis | | McAfee-GW-Edition | 6.7.6 | 2009.04.18 | Trojan.Dropper.Gen | | Microsoft | 1.4502 | 2009.04.18 | - | | NOD32 | 4018 | 2009.04.18 | - | | Norman | 6.00.06 | 2009.04.17 | - | | nProtect | 2009.1.8.0 | 2009.04.18 | - | | Panda | 10.0.0.14 | 2009.04.18 | - | | PCTools | 4.4.2.0 | 2009.04.17 | - | | Prevx1 | V2 | 2009.04.18 | - | | Rising | 21.25.52.00 | 2009.04.18 | - | | Sophos | 4.40.0 | 2009.04.18 | - | | Sunbelt | 3.2.1858.2 | 2009.04.18 | - | | Symantec | 1.4.4.12 | 2009.04.18 | - | | TheHacker | 6.3.4.0.309 | 2009.04.16 | - | | TrendMicro | 8.700.0.1004 | 2009.04.17 | - | | ViRoBOT | 2009.4.18.1685 | 2009.04.18 | - | | VirusBuster | 4.6.5.0 | 2009.04.18 | - |
| 附加訊息 | | File size: 91648 bytes | | MD5...: 4a218ebf71ba0205df744f951c2982a0 | | SHA1..: ef3faeb171b86d634089cede72eb167fe153976e | | SHA256: f28a02082da51856dc7fe36815239c8b05628025d015af6631313bc9d2c79288 | SHA512: 36e5b70c8b6f4b666a5c6761c23e7b05bae406665b929d4b6ce1f3433242305b
57e539984e3d325f0d8dd5bfdc56b7465c385a5c7db8c7bab5f5ba38413e5cd2 | ssdeep: 384:F5BL9kHgXDDTN98M3elkvpmDBsZDXxSMlABdUuuuJt+aeGcsvhwDV/Bzszg8
0Rl7:FOzRkEDsXZWwaVcsvhIBzogSva9
| | PEiD..: - | TrID..: File type identification
Win32 Executable Generic (38.3%)
Win32 Dynamic Link Library (generic) (34.1%)
Win16/32 Executable Delphi generic (9.3%)
Generic Win/DOS Executable (9.0%)
DOS Executable Generic (9.0%) | PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x1000
timedatestamp.....: 0x49e919a0 (Sat Apr 18 00:06:56 2009)
machinetype.......: 0x14c (I386)
( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.code 0x1000 0x4ce 0x600 4.26 496bb0213●CSOL木馬網站●ffd6fac76ae
.text 0x2000 0xe5c 0x1000 5.77 72834ef8a3c49c7f4ce0962e173b657f
.data 0x3000 0x544 0x600 3.99 2d56339431e6489c021ceeff6859d07c
.rsrc 0x4000 0x14450 0x●CSOL木馬網站●20edcd4ba09558ece427d85faaecd6
( 2 imports )
> MSVCRT.dll: memset, strncpy, memcpy, memmove, strlen
> KERNEL32.dll: GetModuleHandleA, HeapCreate, HeapDestroy, ExitProcess, CreateToolhelp32Snapshot, Process32First, Process32Next, CloseHandle, GetProcAddress, GetCurrentProcess, WaitForSingleObject, VirtualFreeEx, InitializeCriticalSection, GetModuleFileNameA, Sleep, FreeLibrary, LoadLibraryA, HeapAlloc, WaitForMultipleObjects, HeapReAlloc, ResetEvent, SetEvent, HeapFree, TlsGetValue, TlsSetValue, EnterCriticalSection, GetCurrentThread, DuplicateHandle, LeaveCriticalSection, TlsAlloc, CreateEventA, CreateThread
( 0 exports )
| RDS...: NSRL Reference Data Set
不清楚是什麼就上網查查吧
|
|
收藏
分享
讚
幹
分享
分享