× Колачићи су онемогућени. Овај сајт захтева колачиће како би нормално функционисао
SHA256: cdcdf9b6f0f12e975c541db7e1370b207ccfc6181fd803c202b6209c7c7432ae
Име датотеке: SC AntiCheat.exe
Однос откривања: 11 / 68
Датум анализе: 2017-12-17 13:37:05 UTC (пре 9 сати, 31 минут)
Антивирус Резултат Ажурирање
AVware Trojan.Win32.Generic!BT 20171217
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9989 20171216
Cybereason malicious.1b8fb7 20171103
Endgame malicious (moderate confidence) 20171130
Ikarus Win32.SuspectCrc 20171217
McAfee RDN/Generic.tfr 20171217
McAfee-GW-Edition RDN/Generic.tfr 20171217
Qihoo-360 Win32/Trojan.9ed 20171217
TrendMicro-HouseCall TROJ_GEN.R002H06LB17 20171217
VBA32 suspected of Trojan.Downloader.gen.h 20171215
VIPRE Trojan.Win32.Generic!BT 20171217
Ad-Aware 20171217
AegisLab 20171217
AhnLab-V3 20171217
Alibaba 20171215
ALYac 20171217
Antiy-AVL 20171217
Arcabit 20171217
Avast 20171217
Avast-Mobile 20171217
AVG 20171217
Avira (no cloud) 20171217
BitDefender 20171217
Bkav 20171216
CAT-QuickHeal 20171216
ClamAV 20171217
CMC 20171217
Comodo 20171217
CrowdStrike Falcon (ML) 20171016
Cylance 20171217
Cyren 20171217
DrWeb 20171217
eGambit 20171217
Emsisoft 20171217
ESET-NOD32 20171217
F-Prot 20171217
F-Secure 20171217
Fortinet 20171217
GData 20171217
Sophos ML 20170914
Jiangmin 20171217
K7AntiVirus 20171217
K7GW 20171214
Kaspersky 20171217
Kingsoft 20171217
Malwarebytes 20171217
MAX 20171217
Microsoft 20171217
eScan 20171217
NANO-Antivirus 20171217
nProtect 20171217
Palo Alto Networks (Known Signatures) 20171217
Panda 20171217
Rising 20171217
SentinelOne (Static ML) 20171207
Sophos AV 20171217
SUPERAntiSpyware 20171217
Symantec 20171216
Symantec Mobile Insight 20171215
Tencent 20171217
TheHacker 20171210
TotalDefense 20171217
TrendMicro 20171217
Trustlook 20171217
ViRobot 20171217
Webroot 20171217
WhiteArmor 20171204
Yandex 20171216
Zillya 20171214
ZoneAlarm by Check Point 20171217
Zoner 20171217
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows command line subsystem.
FileVersionInfo properties
Copyright
Copyright (C) 2016

Product SERB-CRAFT AntiCheat
Original name SC AntiCheat.exe
Internal name SC AntiCheat.exe
File version 2.0.1.0
Description Sistem koji radi blokiranje nedozvoljenih klijenata prilikom ulaska na SERB-CRAFT Minecraft server
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2017-12-01 18:56:57
Entry Point 0x0000D163
Number of sections 5
PE sections
PE imports
GetCurrentHwProfileA
SendARP
GetAdaptersInfo
CreateToolhelp32Snapshot
GetNativeSystemInfo
GetLastError
InitializeCriticalSectionAndSpinCount
HeapFree
GetStdHandle
EnterCriticalSection
LCMapStringW
GetModuleFileNameW
GetConsoleCP
GetOEMCP
QueryPerformanceCounter
EnumSystemLocalesW
IsDebuggerPresent
EncodePointer
TlsAlloc
IsValidLocale
GetEnvironmentStringsW
FlushFileBuffers
LoadLibraryA
RtlUnwind
RaiseException
Process32NextW
DeleteCriticalSection
GetCurrentProcess
IsProcessorFeaturePresent
GetConsoleMode
GetStringTypeW
GetCurrentProcessId
GetUserDefaultLCID
OpenProcess
UnhandledExceptionFilter
GetCommandLineW
GetCPInfo
ExitProcess
LoadLibraryExW
MultiByteToWideChar
HeapSize
SetFilePointerEx
FreeEnvironmentStringsW
DeleteFileW
GetProcAddress
TlsFree
Process32FirstW
GetStartupInfoW
SetStdHandle
SetConsoleTitleW
ReadConsoleW
WideCharToMultiByte
MoveFileExW
GetModuleHandleA
GetFullPathNameW
ReadFile
SetUnhandledExceptionFilter
WriteFile
CloseHandle
GetSystemTimeAsFileTime
GetComputerNameA
TerminateProcess
GetACP
HeapReAlloc
DecodePointer
GetModuleHandleW
GetProcessHeap
LocalFree
IsWow64Process
TlsGetValue
GetModuleHandleExW
IsValidCodePage
OutputDebugStringW
SetLastError
CreateFileW
GlobalAlloc
ReadProcessMemory
InterlockedDecrement
Sleep
GetFileType
SetEndOfFile
TlsSetValue
HeapAlloc
GetCurrentThreadId
GetLocaleInfoW
WriteConsoleW
LeaveCriticalSection
SysFreeString
VariantClear
SysAllocString
ShellExecuteW
FindWindowW
DeleteUrlCacheEntryW
socket
recv
inet_addr
send
WSACleanup
WSAStartup
ntohs
connect
inet_ntoa
htons
closesocket
URLDownloadToFileW
Number of PE resources by type
RT_ICON 5
RT_GROUP_ICON 1
RT_VERSION 1
RT_MANIFEST 1
Number of PE resources by language
ENGLISH US 7
SERBIAN ARABIC YEMEN 1
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
5.1

LinkerVersion
12.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
2.0.1.0

UninitializedDataSize
0

LanguageCode
Unknown (241A)

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
94208

EntryPoint
0xd163

OriginalFileName
SC AntiCheat.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright (C) 2016

FileVersion
2.0.1.0

TimeStamp
2017:12:01 19:56:57+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
SC AntiCheat.exe

ProductVersion
2.0.1.0

FileDescription
Sistem koji radi blokiranje nedozvoljenih klijenata prilikom ulaska na SERB-CRAFT Minecraft server

OSVersion
5.1

FileOS
Windows NT 32-bit

Subsystem
Windows command line

MachineType
Intel 386 or later, and compatibles

CompanyName
SERB-CRAFT

CodeSize
146432

ProductName
SERB-CRAFT AntiCheat

ProductVersionNumber
2.0.1.0

FileTypeExtension
exe

ObjectFileType
Executable application

Compressed bundles
File identification
MD5 9ccef20611cf598300507239d61992eb
SHA1 e73701f26ba8e744b653525cfae1b0c17aa0132d
SHA256 cdcdf9b6f0f12e975c541db7e1370b207ccfc6181fd803c202b6209c7c7432ae
ssdeep
3072:ljQMRlILD2NLev65CsEB9XThQTNhpJSK/XL57JrU+cf/2UOtbGrhWNU:ljQMrSD2NbcnTEh7P99rUhfKG9WN

authentihash f96611aa2a71234ff4e5a8c759b8aca44834b98e474529f1819912465bed6520
imphash dea4ec5dbf68279514ddc27862027570
File size 210.0 KB ( 215040 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (console) Intel 80386 32-bit

TrID Win64 Executable (generic) (64.6%)
Win32 Dynamic Link Library (generic) (15.4%)
Win32 Executable (generic) (10.5%)
Generic Win/DOS Executable (4.6%)
DOS Executable Generic (4.6%)
Tags
peexe

VirusTotal metadata
First submission 2017-12-01 19:17:33 UTC (пре 2 недеље, 2 дана)
Last submission 2017-12-13 13:58:36 UTC (пре 4 дана, 9 сати)
Имена датотека 1024-e73701f26ba8e744b653525cfae1b0c17aa0132d
SC AntiCheat.exe
SCAC.exe
anti-cheat.exe
output.112542012.txt
Нема коментара.. Ниједан члан заједнице Вајрустотала још није прокоментарисао ову ставку. Будите први који ће то урадити!

Оставите коментар…

?
Постави коментар

Нисте пријављени. Само регистровани корисници могу да остављају коментаре. Отворите налог и разгласите се!

Нема гласова.. Још нико није гласао за ову ставку. Будите први који ће то учинити!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Deleted files
Searched windows
Runtime DLLs
UDP communications