| Verificador de Vírus Online | v.1.0.209.174 |
| Versão do Banco de Dados: | 2025-02-23 09:00:29 |
O "Heur" significa "heurística", o que significa que usamos um conjunto de regras, algoritmos ou análises comportamentais para detectar ameaças potenciais que podem não ter uma assinatura específica conhecida. É uma abordagem proativa para identificar comportamentos suspeitos ou padrões de código que podem indicar a presença de um cavalo de Troia ou outro malware. O comportamento ou as características do arquivo acionaram a análise heurística como potencialmente maliciosos. No entanto, isso não confirma necessariamente que o arquivo seja realmente um cavalo de Troia. Pode ser um falso positivo, em que um programa legítimo exibe um comportamento que se assemelha a atividade maliciosa.
| File | CLIPStudioPaint.exe |
| Verificado | 2025-02-23 07:25:32 |
| MD5 | e33ffc6cdca11767756f9dea9da7d5bf |
| SHA1 | d41fc6b20636acdc80727401a7ccbac1eaa3d9b8 |
| SHA256 | 1540e42a854dec9aea4c04b4cf050b9518409dedf178661a145715453b5a1d51 |
| SHA512 | 7c4e632eefcc87397aca6eea8e01cfc0cbe10950621932534fef3408bf0696527e9e6cbbc4b3028ecef1c7e0689bcc82a6f66220bcfc76a7bc9543722e9c6182 |
| Imphash | a8e45162438415b3d2bf8c41c051c508 |
| File Size | 39306752 bytes |
Gridinsoft tem a capacidade de identificar e eliminar Trojan.Heur!.022D0023 sem a necessidade de intervenção adicional do usuário.
| CompanyName | CELSYS,Inc. |
| FileDescription | CLIP STUDIO PAINT |
| FileVersion | 3.2.2.0 |
| InternalName | CLIP STUDIO PAINT |
| LegalCopyright | (C) CELSYS,Inc. All Rights Reserved. |
| OriginalFilename | CLIPStudioPaint.exe |
| ProductName | CLIP STUDIO PAINT |
| ProductVersion | 3.2.2 |
| Translation | 0x0409 0x04b0 |
 |
863f61d6f2716c147763aa8c36936bf8 c023a2e141a89059191f38edc486950d c88e236d330ccec8 |
| Image Base: | 0x140000000 |
| Entry Point: | 0x146ba0ac8 |
| Compilation: | 2025-01-20 04:54:52 |
| Checksum: | 0x02585ee5 (Actual: 0x02585ee5) |
| OS Version: | 6.0 |
| PEiD: | PE32+ executable (GUI) x86-64, for MS Windows |
| Sign: | No valid SignedData structure was found. |
| Sections: | 9 |
| Imports: | boost_date_time, boost_thread, WS2_32, QmPdkDll, CRYPT32, KERNEL32, USER32, ADVAPI32, MSVCP140, bcrypt, SHLWAPI, IMM32, MSACM32, CONCRT140, VCRUNTIME140, VCRUNTIME140_1, api-ms-win-crt-runtime-l1-1-0, api-ms-win-crt-heap-l1-1-0, api-ms-win-crt-stdio-l1-1-0, api-ms-win-crt-string-l1-1-0, api-ms-win-crt-math-l1-1-0, api-ms-win-crt-utility-l1-1-0, api-ms-win-crt-time-l1-1-0, api-ms-win-crt-convert-l1-1-0, api-ms-win-crt-environment-l1-1-0, api-ms-win-crt-filesystem-l1-1-0, api-ms-win-crt-locale-l1-1-0, ailia, giflib, jpeg62, libpng16, tiff, libwebp, libwebpmux, COMCTL32, mscms, RPCRT4, d2d1, d3d11, dcomp, DWrite, AVIFIL32, IPHLPAPI, libfbxsdk, zlib, gdiplus, MF, MFPlat, MFReadWrite, api-ms-win-core-winrt-string-l1-1-0, api-ms-win-core-winrt-l1-1-0, dxgi, WINMM, WININET, VERSION, boost_regex, icuuc65, skia, skshaper, GLU32, OPENGL32, GDI32, COMDLG32, SHELL32, ole32, OLEAUT32, |
| Exports: | 2 |
| Resources: | 86 |
| Nome | Endereço Virtual | Tamanho Virtual | Tamanho Bruto | MD5 | Entropia |
|---|---|---|---|---|---|
| .text | 0x00001000 | 0x03d4f25c | 0x00000000 | d41d8cd98f00b204e9800998ecf8427e | 0.00 |
| .rdata | 0x03d51000 | 0x00c6aa0c | 0x00000000 | d41d8cd98f00b204e9800998ecf8427e | 0.00 |
| .data | 0x049bc000 | 0x00484658 | 0x00000000 | d41d8cd98f00b204e9800998ecf8427e | 0.00 |
| .pdata | 0x04e41000 | 0x001ef93c | 0x00000000 | d41d8cd98f00b204e9800998ecf8427e | 0.00 |
| _RDATA | 0x05031000 | 0x00002408 | 0x00000000 | d41d8cd98f00b204e9800998ecf8427e | 0.00 |
| .krv0 | 0x05034000 | 0x00a7f9ea | 0x00000000 | d41d8cd98f00b204e9800998ecf8427e | 0.00 |
| .krv1 | 0x05ab4000 | 0x00003ad0 | 0x00003c00 | 14b055116b3ef3819acfcca70fd6b4ac | 0.25 |
| .krv2 | 0x05ab8000 | 0x02201604 | 0x02201800 | e50c65f346493bf25b791d161203fc09 | 7.99 |
| .rsrc | 0x07cba000 | 0x00376cb5 | 0x00376e00 | fa9abb6bfd39958d339504025105d066 | 4.87 |
