Please ensure you understand and agree with our data protection policy before using this site. Review Policy
Online Virus Checker | v.1.0.175.174 |
DB Version: | 2024-05-14 06:00:43 |
Trojan Agent is malicious software that masquerades as legitimate files or programs to carry out various harmful actions on infected computers, such as data theft or remote control by cybercriminals.
File | Arquivos.exe |
Checked | 2024-05-14 06:29:15 |
MD5 | d23cd67837ad55e0e21e3aa72dfdeab5 |
SHA1 | 0705b1b08c08bf206ca7803f4e994deee62c5bc7 |
SHA256 | 36233bfb944662e943593f48456bd9ae285d4886ac17ba6f1be276d6fda2c6bf |
SHA512 | 1a60f6cf9023754a9f7ddd045bb080841feaffa6322526ec84698a163c2f46834e8f9a644f5cf38b1149fc3a99a64e1f091614fd129d92aa9a9dd5543fb0fd6d |
Imphash | 4a894b49c435cb911bf76f7e3c256812 |
File Size | 7096832 bytes |
Gridinsoft has the capability to identify and eliminate Trojan.Win32.Agent.oa!s1 without requiring further user intervention.
d34fedf3e4e0a0a4de467558ab407dbb d8e1359d6cc5fff553bd16a08c6ea386 beb2b6b6766276b4 |
|
Image Base: | 0x00400000 |
Entry Point: | 0x00539974 |
Compilation: | 2012-02-17 22:25:39 |
Checksum: | 0x006c7c47 (Actual: 0x006c9956) |
OS Version: | 5.0 |
PEiD: | PE32 executable (GUI) Intel 80386, for MS Windows |
Sign: | The PE file does not contain a certificate table. |
Sections: | 10 |
Imports: | oleaut32, advapi32, user32, kernel32, msimg32, gdi32, version, ole32, comctl32, winspool, shell32, |
Exports: | 0 |
Resources: | 92 |
Name | Virtual Address | Virtual Size | Raw Size | MD5 | Entropy |
---|---|---|---|---|---|
.text | 0x00001000 | 0x001366c8 | 0x00136800 | c6085e5b3ac3a86c1bb4a8c1350660d2 | 6.37 |
.itext | 0x00138000 | 0x000019c4 | 0x00001a00 | f810af10df9206e0040bbea9ffdc1c6e | 6.08 |
.data | 0x0013a000 | 0x00005a2c | 0x00005c00 | 803fb3ddac13bd65ad3d2fbf266831a9 | 4.68 |
.bss | 0x00140000 | 0x00005628 | 0x00000000 | d41d8cd98f00b204e9800998ecf8427e | 0.00 |
.idata | 0x00146000 | 0x00003476 | 0x00003600 | 0b4603d97056a0e05d311627d956df22 | 5.08 |
.didata | 0x0014a000 | 0x000003a0 | 0x00000400 | a5daeb9e64ddb12a408ada6024c01cd0 | 3.67 |
.tls | 0x0014b000 | 0x0000003c | 0x00000000 | d41d8cd98f00b204e9800998ecf8427e | 0.00 |
.rdata | 0x0014c000 | 0x00000018 | 0x00000200 | e3e9793437adba4923c87c9fc8cb2aa8 | 0.19 |
.reloc | 0x0014d000 | 0x0001aa44 | 0x0001ac00 | 65222fb24f9cbb320bba0a6f6b3d2a8a | 6.69 |
.rsrc | 0x00168000 | 0x00567ed4 | 0x00568000 | 3de5a50e4b1c2e049b0f0853d60592e0 | 6.62 |