Information about $R5R8E3Y.exe

$R5R8E3Y.exe

File Details

Product Name:

Host App Service
Company Name:

Pokki
MD5: b54c47778f156a910da8dfe0e3c1193d
Size: 7 MB
First Published: 2017-05-30 18:11:27 (8 years ago)
Latest Published: 2024-05-30 23:02:39 (2 years ago)
Status: Undefined (on last analysis)
Analysis Date: 2024-05-30 23:02:39 (2 years ago)

Overview

Signed By: Pokki
Status: Valid

Common Places:

%localappdata%\pokki\engine
%sysdrive%\adwcleaner\quarantine\files\puvstpljnwbfttpsjuszpbmjmnoznrfu\engine
%localappdata%\pokki
%sysdrive%\adwcleaner\quarantine\files\zknpyqkmpsengrusmfymtfgwnngsqpef
%sysdrive%\adwcleaner\quarantine\files\tddukjustictdxuowepakvauzwkeiaxh
%sysdrive%\windows.old\users\hano\appdata\local\pokki
%sysdrive%\adwcleaner\quarantine\files\amxovpebclsbglpiomtgvsnfahdljnha
%sysdrive%\adwcleaner\quarantine\files\lbmfqkhvsnoiigcrloksdufmmotwhlce
%sysdrive%\adwcleaner\quarantine\files\gwrcrmjthyjzzlmcyhdknhsfspagucwh
%sysdrive%\adwcleaner\quarantine\files\lvgliexicbmaxhbepfzoszkmqlnbrwqv

File Names:

HostAppService.exe
$R5R8E3Y.exe
$RAIRUP4.exe
$R8QPGX5.exe
HostAppService (1).exe

Geography:

30.6%
13.5%
8.1%
7.2%
3.6%
3.6%
2.7%
2.7%
2.7%
2.7%
2.7%
2.7%
1.8%
1.8%
1.8%
1.8%
1.8%
0.9%
0.9%
0.9%
0.9%
0.9%
0.9%
0.9%
0.9%
0.9%

OS Version:

Windows 8.1 50.9%
Windows 10 49.1%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x003b7a72

PE Sections:

Name Size of data MD5
.text 5313024 d4e59b25d2160f0199065e8cb7d64943
.rdata 924672 fd87bc527b965bd84975e8bd5864671b
.data 136192 00954a76bd75d94d8d8df45e3fc493d1
.tls 512 bf619eac0cdf3f68d496ea9344137e8b
.rsrc 952832 bdbcaa29805500d960a9a2b39077b6f4
.reloc 220672 797688bdc199ee0684ae69e1c98e30fe

More information:

Search on Virustotal
copyright for information about $R5R8E3Y.exe