Please ensure you understand and agree with our data protection policy before using this site. Review Policy
Online Virus Checker | v.1.0.173.174 |
DB Version: | 2024-04-26 21:00:28 |
File | Water |
Checked | 2024-04-26 21:12:47 |
MD5 | 12d374f5d55dc469aee06c9cd50e9e61 |
SHA1 | 8e3af58dcf5c3da96b4c984d94b2ce19c6fef1eb |
SHA256 | fd91ac27792d0f75969dbba3bfa91ec6aa025bdf4b3f2e5e35bc7b22551e14d7 |
SHA512 | f6b56036a0383e17bde7e6563b0a1316bd650ec6e1836584e72e647b1de22728602b180e885e10c6dc9390aa7d12bdfa78574781466a2c5301674317143e5408 |
Imphash | 32db0a910f88bc9b49b86745793d5182 |
File Size | 320000 bytes |
Gridinsoft has the capability to identify and eliminate Malware.Win32.Stealc.tr without requiring further user intervention.
FileVersions | 9.19.53.14 |
ProductVersion | 16.94.40.60 |
InternalName | Water |
LegalCopyrights | Voice |
CompanyNames | Sword |
Translation | 0x0409 0x04e4 |
d7a256b6613ae9828bdf694de6ac9ccb 10b764f01565e3da1fe7849b1a36a054 f2f0c496e4f0b1f0 |
|
Image Base: | 0x00400000 |
Entry Point: | 0x0040167a |
Compilation: | 2023-01-13 10:49:17 |
Checksum: | 0x00050a33 (Actual: 0x00050a33) |
OS Version: | 5.1 |
PEiD: | PE32 executable (GUI) Intel 80386, for MS Windows |
Sign: | The PE file does not contain a certificate table. |
Sections: | 4 |
Imports: | KERNEL32, USER32, ADVAPI32, |
Exports: | 0 |
Resources: | 26 |
Name | Virtual Address | Virtual Size | Raw Size | MD5 | Entropy |
---|---|---|---|---|---|
.text | 0x00001000 | 0x00008020 | 0x00008200 | 67d6e0047c5d9cccf5e8b08d28116de3 | 6.50 |
.rdata | 0x0000a000 | 0x000320f2 | 0x00032200 | 312a58b9d69a41d29007a25af930458a | 4.42 |
.data | 0x0003d000 | 0x02729084 | 0x00002800 | 5f7f022a08bd5a67c0e752817592526c | 1.04 |
.rsrc | 0x02767000 | 0x00011010 | 0x00011200 | 2b931b8503393ed96b54bc1e34344d60 | 5.21 |