How to remove $RFIQ5YZ.exe

» File
File Details
Overview
Analysis

$RFIQ5YZ.exe

The module $RFIQ5YZ.exe has been detected as General Threat

$RFIQ5YZ.exe

Remove $RFIQ5YZ.exe

File Details

Main Info:

Product Name:	影音先锋 9.9.8 P2P 云3D版
Company Name:	零与壹软件
MD5:	71cb3ae6f8195f515289515535bb8089
Size:	17 MB
First Published:	2019-10-31 17:20:29 (5 years ago)
Latest Published:	2024-08-08 23:02:01 (9 months ago)

Analysis:

Status:	General Threat (on last analysis)
Analysis Date:	2024-08-08 23:02:01 (9 months ago)

Overview

Digital Signature

Signed By:	临桂零与壹软件有限公司
Status:	Valid

Common Places:

%sysdrive%\$recycle.bin

%sysdrive%\download

Geography:

	50.0%
	50.0%

OS Version:

Windows Server 2012 R2	50.0%
Windows 10	50.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00016478

PE Sections:

Name	Size of data	MD5
.text	82944	824e3957006b0613ed9c53ada45c1db3
.itext	3072	a1e7b318e1115c7a9aaa4dee97b67e4b
.data	3584	92f43d0b99e4a0f84c5c4e73441a80d1
.bss	0	00000000000000000000000000000000
.idata	4096	b47eaca4c149ee829de76a342b5560d5
.tls	0	00000000000000000000000000000000
.rdata	512	3746f5876803f8f30db5bb2deb8772ae
.rsrc	114688	d1671394a06a6922c5c4f65139b6e309

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for $RFIQ5YZ.exe

copyright for information about $RFIQ5YZ.exe