How to remove $R0RFQTF.exe
- File Details
- Overview
- Analysis
$R0RFQTF.exe
The module $R0RFQTF.exe has been detected as General Threat
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
5bfda85295c84c8d2d1307e9d78d46e7 |
| Size: |
36 MB |
| First Published: |
2024-05-21 23:01:23 (2 years ago) |
| Latest Published: |
2025-08-13 23:00:57 (3 months ago) |
| Status: |
General Threat (on last analysis) |
|
| Analysis Date: |
2025-08-13 23:00:57 (3 months ago) |
| %sysdrive%\$recycle.bin |
| %desktop% |
| %desktop% |
| %profile%\downloads |
| %profile%\downloads |
| %desktop% |
| %profile%\downloads |
| %profile%\downloads\emuladores\emuladores |
| %profile%\downloads |
| %desktop%\other\games |
|
20.0% |
|
|
16.7% |
|
|
10.0% |
|
|
10.0% |
|
|
10.0% |
|
|
6.7% |
|
|
6.7% |
|
|
3.3% |
|
|
3.3% |
|
|
3.3% |
|
|
3.3% |
|
|
3.3% |
|
|
3.3% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000140000000 |
| Entry Address: |
0x01536248 |
| Name |
Size of data |
MD5 |
| .text |
23708672 |
7e5ed36bb0ed72cae167884e3d27c701 |
| .rdata |
10126848 |
8c9789b5e2983db6982c1f4f8f0f5bd1 |
| .data |
367616 |
46151e900b49dacc4bdfb72bae489586 |
| .pdata |
682496 |
bd2bd3030cd24e88a2f60d931e24e82f |
| _RDATA |
70656 |
5960b0dd1f050b81de77d497432e0e47 |
| .rsrc |
2647040 |
32195caa731d00fed7343247f06506e5 |
| .reloc |
256000 |
b1a0d13620b674ee8cbb112ceec86910 |
