How to remove $RL9CA3T.exe
- File Details
- Overview
- Analysis
$RL9CA3T.exe
The module $RL9CA3T.exe has been detected as Trojan.Gen
File Details
| Product Name: |
|
| MD5: |
efb7d8bb0c24821039ad8f058fd099ab |
| Size: |
4 MB |
| First Published: |
2017-08-12 03:08:07 (7 years ago) |
| Latest Published: |
2017-08-18 03:04:20 (7 years ago) |
| Status: |
Trojan.Gen (on last analysis) |
|
| Analysis Date: |
2017-08-18 03:04:20 (7 years ago) |
| %programfiles%\yeadesktop |
| %sysdrive%\$recycle.bin\s-1-5-21-551427838-1499043770-932230231-500 |
| BearUnInstall.exe |
| $RL9CA3T.exe |
| Windows 7 |
77.8% |
|
| Windows 8.1 |
11.1% |
|
| Windows 10 |
11.1% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x001b0d72 |
| Name |
Size of data |
MD5 |
| .text |
3270144 |
12cd208e50903d0fadc65f05b6ef05a8 |
| .rdata |
764928 |
3147da95ed9b91d6e0b6fcf67dc1a909 |
| .data |
90112 |
35ac44a0c3f017e0cdc09024af2566c5 |
| .gfids |
5632 |
a0c12cc187ee67a1e7d552b1f4512eb6 |
| .tls |
512 |
1f354d76203061bfdd5a53dae48d5435 |
| .rsrc |
118272 |
ef3621931471251ffc6d01e3feadaeb3 |
| .reloc |
170496 |
b8513e4715ab72fbb84b3cea720a8d29 |
