How to remove $RHEC0T1.exe

» File
File Details
Overview
Analysis

$RHEC0T1.exe

The module $RHEC0T1.exe has been detected as Trojan.Kryptik

$RHEC0T1.exe

Remove $RHEC0T1.exe

File Details

Main Info:

MD5:	6d692a6fb49cabc5ba121573e8797baf
Size:	574 KB
First Published:	2017-10-05 13:13:14 (7 years ago)
Latest Published:	2018-09-02 09:11:57 (6 years ago)

Analysis:

Status:	Trojan.Kryptik (on last analysis)
Analysis Date:	2018-09-02 09:11:57 (6 years ago)

Overview

Digital Signature

Signed By:	DATA@amp;LAB LTD
Status:	Valid

Common Places:

%profile%\downloads

%profile%\downloads\programs

%sysdrive%\$recycle.bin\s-1-5-21-1185571189-3832473185-1818958336-500

%profile%

%sysdrive%

File Names:

[RapidFiles]_42019.exe

$RHEC0T1.exe

Geography:

	44.4%
	44.4%
	11.1%

OS Version:

Windows 7

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00011ca9

PE Sections:

Name	Size of data	MD5
.text	142848	8b47ccbfa8c98148a28925cc8a74f5d8
.rdata	36864	4bc4da57db0c409556cfc496dbd5c13e
.data	3072	9630eaded8d133c9f2659c3897e9d265
.gfids	512	86a6a1533c4cb7c6a186479cc6cd866a
.rsrc	383488	97df35c935a6a53ecd6da7e04e187707
.reloc	9728	4605908691c6b93011087360164c5d62

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for $RHEC0T1.exe

copyright for information about $RHEC0T1.exe