How to remove $RJE45PI.exe
- File Details
- Overview
- Analysis
$RJE45PI.exe
The module $RJE45PI.exe has been detected as Trojan.Agent
File Details
Product Name: |
|
Company Name: |
|
MD5: |
53ce8215e77c02009f078af2c444a5ce |
Size: |
15 MB |
First Published: |
2018-07-10 16:04:32 (6 years ago) |
Latest Published: |
2018-08-12 16:18:17 (6 years ago) |
Status: |
Trojan.Agent (on last analysis) |
|
Analysis Date: |
2018-08-12 16:18:17 (6 years ago) |
Overview
%profile% |
%commonappdata%\caphyon\advanced installer |
%sysdrive%\$recycle.bin |
%sysdrive%\$recycle.bin\s-1-5-21-1405288125-731595638-3998187945-1001\$rguh0mc\advanced installer |
%localappdata%\nordvpn\updates\default |
%sysdrive%\برامج |
%sysdrive%\$recycle.bin\s-1-5-21-690284755-3454928930-866488444-1001\$ratdxn1\updates\default |
%sysdrive%\$recycle.bin\s-1-5-21-690284755-3454928930-866488444-1001\$rs1xzcp\updates\default |
%localappdata%\packages\microsoft.microsoftedge_8wekyb3d8bbwe\tempstate |
NordVPNSetup.exe |
$RJE45PI.exe |
nordvpnsetup.exe |
sd5omwmq.exe |
jysylq5u.exe |
dge4rb5p.exe |
fvnp54hm.exe |
NordVPNSetup (1).exe |
oteoq5ij.exe |
sostxvgq.exe |
$RAVDLMG.exe |
$R54OX3A.exe |
nmjghzxs.exe |
0eu3f2cq.exe |
5nq30riw.exe |
United States |
41.2% |
|
Russia |
19.6% |
|
Algeria |
11.8% |
|
India |
9.8% |
|
United Kingdom |
5.9% |
|
Belarus |
3.9% |
|
Sweden |
2.0% |
|
Romania |
2.0% |
|
Norway |
2.0% |
|
France |
2.0% |
|
Analysis
Subsystem: |
Windows GUI |
PE Type: |
pe |
OS Bitness: |
32 |
Image Base: |
0x00400000 |
Entry Address: |
0x000da6b1 |
Name |
Size of data |
MD5 |
.text |
1198592 |
95eea8f3834322b4070fb846d708dda6 |
.rdata |
350720 |
4eddf64cefd2fe10ef9685b6bea1ad21 |
.data |
9216 |
b3c4923d65cab09e4ec861e2d2161e40 |
.rsrc |
422400 |
d3db057625e53554f5ff1f53d29092fc |
.reloc |
87040 |
1f5ae7bc66909218be16d85f76ed057d |