How to remove $R6OUHBA.exe

» File
File Details
Overview
Analysis

$R6OUHBA.exe

The module $R6OUHBA.exe has been detected as Trojan.Heur!

$R6OUHBA.exe

Remove $R6OUHBA.exe

File Details

Main Info:

Product Name:	AutoIt v3 ActiveX Control
Company Name:	AutoIt Team
MD5:	1eb030c3f5550d497baaf1cef473dbdf
Size:	21 MB
First Published:	2023-06-24 23:26:19 (2 years ago)
Latest Published:	2023-06-24 23:26:52 (2 years ago)

Analysis:

Status:	Trojan.Heur! (on last analysis)
Analysis Date:	2023-06-24 23:26:52 (2 years ago)

Overview

Digital Signature

Signed By:	IObit CO., LTD
Status:	Invalid (digital signature could be stolen or file could be patched)

Common Places:

%sysdrive%\$recycle.bin

%sysdrive%\$recycle.bin

%sysdrive%\$recycle.bin

%sysdrive%\$recycle.bin

%sysdrive%\$recycle.bin

%sysdrive%\$recycle.bin

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00c8f373

PE Sections:

Name	Size of data	MD5
.text	862720	2fb55b208eea6a6931fe3377f5949725
.rdata	387072	91bab8b0416803552e90a2296cbce763
.data	2560	3d751440a6d88a7912a6a4d568c74f68
.sput0	10921472	eca5d9d9c3d4ff9f95ed105d2af2db26
.sput1	2048	6c3afc7ded4206bf5369f64c26dcb8eb
.sput2	10096128	4988e9130e3c63c2c33e9eb5e415afad
.reloc	35840	0cfaf67a9b3f5f2e43b62bc6733d1470
.rsrc	67584	276f630e948b262f5054bf6f9a4a0d23

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for $R6OUHBA.exe

copyright for information about $R6OUHBA.exe