Please ensure you understand and agree with our data protection policy before using this site. Review Policy
Online Virus Checker | v.1.0.168.174 |
DB Version: | 2024-03-11 09:00:31 |
Trojan Agent is malicious software that masquerades as legitimate files or programs to carry out various harmful actions on infected computers, such as data theft or remote control by cybercriminals.
File | WinSpy-x64.exe |
Checked | 2024-03-11 09:59:43 |
MD5 | 7ecccf57da8e96c294f75a5ea9a0932f |
SHA1 | 786fdfb484860d0ffdd867466b2f5c295165094c |
SHA256 | 13ea79d2acb0b83963f7a1dd968d8e6175d5706501aa6f9ed782827fae026f70 |
SHA512 | c4cc3904f1a59b6709b8ef94f3229d94532ad5874a837e9e349950bcd2dd08345c9c37a040db879b89653f621aa08cb4999c0db1741ddca650c3d39a11e051df |
Imphash | b6f29f6dcef4cf7c121f3377a4ea0050 |
File Size | 1155072 bytes |
Gridinsoft has the capability to identify and eliminate Spy.Win64.Agent.bot!s1 without requiring further user intervention.
FileDescription | |
FileVersion | 1.1.24.04 |
InternalName | |
LegalCopyright | |
OriginalFilename | |
ProductName | |
ProductVersion | 1.1.24.04 |
Translation | 0x0409 0x04b0 |
3e5f1c1d329c1664a0bdea8a6beb2f56 7ca9a124ffd5fe3079b00a9387157cf4 457a9a9a9a96ba45 |
|
Image Base: | 0x140000000 |
Entry Point: | 0x1400a37a8 |
Compilation: | 2016-12-17 07:05:09 |
Checksum: | 0x00000000 (Actual: 0x00121659) |
OS Version: | 5.2 |
PEiD: | PE32+ executable (GUI) x86-64, for MS Windows |
Sign: | The PE file does not contain a certificate table. |
Sections: | 7 |
Imports: | WSOCK32, WINMM, VERSION, COMCTL32, PSAPI, KERNEL32, USER32, GDI32, COMDLG32, ADVAPI32, SHELL32, ole32, OLEAUT32, |
Exports: | 0 |
Resources: | 17 |
Name | Virtual Address | Virtual Size | Raw Size | MD5 | Entropy |
---|---|---|---|---|---|
.text | 0x00001000 | 0x000c0ebc | 0x000c1000 | adee64ee28c5d2edca7c27145235d6be | 6.53 |
.rdata | 0x000c2000 | 0x00037fe8 | 0x00038000 | c8b0b50ce2da6c603665c5f283510a5a | 5.13 |
.data | 0x000fa000 | 0x0000bd34 | 0x00003800 | ada89d0f965ceb03a7718ee324d7a142 | 3.28 |
.pdata | 0x00106000 | 0x00006e88 | 0x00007000 | 48005810c75a9a3924041dae6fcd37c6 | 5.98 |
.gfids | 0x0010d000 | 0x000000ec | 0x00000200 | f5e51796d174b45cab03be663b7cc771 | 1.98 |
.tls | 0x0010e000 | 0x00000009 | 0x00000200 | 1f354d76203061bfdd5a53dae48d5435 | 0.02 |
.rsrc | 0x0010f000 | 0x00015ed4 | 0x00016000 | 523cec04b473ddecc8402426835a65f0 | 6.00 |