Online Virus Checker | v.1.0.181.174 |
DB Version: | 2024-07-08 01:00:24 |
Trojan Agent is malicious software that masquerades as legitimate files or programs to carry out various harmful actions on infected computers, such as data theft or remote control by cybercriminals.
File | RED ENGINE.exe |
Checked | 2024-07-07 22:14:41 |
MD5 | fc7b9858b6743823efe28e848590a325 |
SHA1 | cc655820d7886356d92de7e07f655a24c1039e0e |
SHA256 | e3d56b3a4103e8ec46f152b2c760f580551db16d88097b4d99ec337dbab3347a |
SHA512 | 4ab6a67b2671de344a37777f12036ebf62184928cb641f59f6d970e693b25499ed6301b84a1321c325fee9645bb0032b01781bf36d14f9dc896af6f3f99b2ef3 |
Imphash | 1e92fd54d65284238a0e3b74b2715062 |
File Size | 18628267 bytes |
Gridinsoft has the capability to identify and eliminate Trojan.Win64.Agent.sa without requiring further user intervention.
99f8909119f22355b3423d4cad169539 c5a2ab820da81f9db77abd76bbd9764e c6c2ccc4f4e0e0f8 |
|
Image Base: | 0x140000000 |
Entry Point: | 0x14000afa0 |
Compilation: | 2024-07-06 04:54:27 |
Checksum: | 0x011cf9fa (Actual: 0x011cf9fa) |
OS Version: | 5.2 |
PEiD: | PE32+ executable (GUI) x86-64, for MS Windows |
Sign: | The PE file does not contain a certificate table. |
Sections: | 7 |
Imports: | USER32, COMCTL32, KERNEL32, ADVAPI32, GDI32, |
Exports: | 0 |
Resources: | 9 |
Name | Virtual Address | Virtual Size | Raw Size | MD5 | Entropy |
---|---|---|---|---|---|
.text | 0x00001000 | 0x00028710 | 0x00028800 | e4f89af1ba6511882cb4cd14d9f6eca0 | 6.49 |
.rdata | 0x0002a000 | 0x0001282e | 0x00012a00 | b46fb57dd934381e0df3eaadfff1f41f | 5.81 |
.data | 0x0003d000 | 0x000103e8 | 0x00000e00 | 8197d15b5af8fff7ec6022f8809b64c8 | 1.80 |
.pdata | 0x0004e000 | 0x000020a0 | 0x00002200 | 77e2f2d72516a8aa1832e8298e54381f | 5.33 |
_RDATA | 0x00051000 | 0x0000015c | 0x00000200 | 0ed86077474ad8a4a0621ecbc29cb84c | 2.76 |
.rsrc | 0x00052000 | 0x0000f498 | 0x0000f600 | ac8c7cbe6626a5ff9e2bb1338d967035 | 7.56 |
.reloc | 0x00062000 | 0x00000754 | 0x00000800 | 7fed9a3addc55d51107d5af5a380ab8e | 5.24 |