How to remove $RKYJC0Z.exe
- File Details
- Overview
- Analysis
$RKYJC0Z.exe
The module $RKYJC0Z.exe has been detected as Adware.Gen
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
f99d1d78393f0700a2ad440d75c51f50 |
| Size: |
417 KB |
| First Published: |
2017-10-01 14:10:05 (8 years ago) |
| Latest Published: |
2024-08-16 23:00:58 (a year ago) |
| Status: |
Adware.Gen (on last analysis) |
|
| Analysis Date: |
2024-08-16 23:00:58 (a year ago) |
Overview
| %sysdrive%\$recycle.bin |
| %programfiles%\按键精灵 |
| %commonappdata%\按键精灵 |
| %sysdrive%\按键精灵 |
| %desktop%\国际服单自瞄-禁止国服 (1) |
| Recorder.exe |
| $RKYJC0Z.exe |
| Windows 7 |
77.8% |
|
| Windows 10 |
22.2% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000140000000 |
| Entry Address: |
0x00028cc4 |
| Name |
Size of data |
MD5 |
| .text |
248832 |
e71ac1cd816da28b976e63a5931b6669 |
| .rdata |
90624 |
eb2a1e6687b0b64f898c6235c8e9a9be |
| .data |
14336 |
89bc4f79fa3eb5232e0b48c3dbcb4c09 |
| .pdata |
17920 |
138522d8dd0f0d2f491b127b78d59f4b |
| .rsrc |
35328 |
6cbc1239f8a4b64abf26e06587b52ef5 |
| .reloc |
12288 |
b4f04281c7cd8af07d39669a5f43b9d1 |
