How to remove $R158F3B.exe
- File Details
- Overview
- Analysis
$R158F3B.exe
The module $R158F3B.exe has been detected as Adware.InstallCore
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
3ca60498e14993701ac05be96f769451 |
| Size: |
20 MB |
| First Published: |
2021-11-22 21:14:41 (3 years ago) |
| Latest Published: |
2023-02-19 23:27:49 (2 years ago) |
| Status: |
Adware.InstallCore (on last analysis) |
|
| Analysis Date: |
2023-02-19 23:27:49 (2 years ago) |
Overview
| %sysdrive%\$recycle.bin |
| %profile% |
| %sysdrive%\$recycle.bin |
| %profile%\downloads |
| %desktop% |
| %profile% |
| %profile% |
| %profile% |
| %profile% |
|
37.5% |
|
|
25.0% |
|
|
12.5% |
|
|
12.5% |
|
|
12.5% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000148d4 |
| Name |
Size of data |
MD5 |
| .text |
104448 |
206b62d600beb166f8bf863ad5301f8c |
| .rdata |
17920 |
b0314f39355cab7d4674a0928d3b15f2 |
| .data |
12800 |
8d44c03d32e0c923339cda9fae15827a |
| .sxdata |
512 |
35925cfdc1176bd9ffc634a58b40ec17 |
| .rsrc |
296448 |
f06fec10e543f53d5ff2662713c60b51 |
