How to remove $RAZ10HF.exe
- File Details
- Overview
- Analysis
$RAZ10HF.exe
The module $RAZ10HF.exe has been detected as Adware.Downloader
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
4a3a5fb7108429a0db71cf4703e2e0f9 |
| Size: |
2 MB |
| First Published: |
2017-12-28 10:14:56 (6 years ago) |
| Latest Published: |
2018-07-18 08:12:23 (6 years ago) |
| Status: |
Adware.Downloader (on last analysis) |
|
| Analysis Date: |
2018-07-18 08:12:23 (6 years ago) |
Overview
| Signed By: |
Valery Sokolov |
| Status: |
Invalid (digital signature could be stolen or file could be patched) |
| %sysdrive%\gs_zvers_backup\27.06.2016.zip |
| %sysdrive%\$recycle.bin |
| 3796139242_1602620464_lsinputSetup.exe.exe.exe |
| $RAZ10HF.exe |
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0000a5f8 |
| Name |
Size of data |
MD5 |
| CODE |
40448 |
c3bd95c4b1a8e5199981e0d9b45fd18c |
| DATA |
1024 |
1ee71d84f1c77af85f1f5c278f880572 |
| BSS |
0 |
00000000000000000000000000000000 |
| .idata |
2560 |
bb5485bf968b970e5ea81292af2acdba |
| .tls |
0 |
00000000000000000000000000000000 |
| .rdata |
512 |
9ba824905bf9c7922b6fc87a38b74366 |
| .reloc |
0 |
00000000000000000000000000000000 |
| .rsrc |
9728 |
2a69967a7de1b96b260125f4fce62516 |
