How to remove $RBPFO2R.exe

» File
File Details
Overview
Analysis

$RBPFO2R.exe

The module $RBPFO2R.exe has been detected as PUP.Downloader

$RBPFO2R.exe

Remove $RBPFO2R.exe

File Details

Main Info:

Product Name:	Setup Downloader
MD5:	f14e290e89bee5e7f97e0f509a911e06
Size:	225 KB
First Published:	2025-08-16 23:01:39 (3 weeks ago)
Latest Published:	2025-08-16 23:01:39 (3 weeks ago)

Analysis:

Status:	PUP.Downloader (on last analysis)
Analysis Date:	2025-08-16 23:01:39 (3 weeks ago)

Common Places:

%sysdrive%\$recycle.bin

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x000074a6

PE Sections:

Name	Size of data	MD5
.text	143360	b2f302dcdd2e298382279e8ba4e379a1
.rdata	37376	037cdca27407b5edd2da31aa892a6521
.data	3072	b72a9d7ad331416726b4eb8310c842b5
.gfids	512	c9416f2ec5469e88ca913957752db93c
.rsrc	26624	73e6f8b38237e248e97ba69e7dc19fbb
.reloc	6656	dc6a543a9687c2f2d25595a1f85f0ca0

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for $RBPFO2R.exe

copyright for information about $RBPFO2R.exe