How to remove $RO9XKZ3.exe
- File Details
- Overview
- Analysis
$RO9XKZ3.exe
The module $RO9XKZ3.exe has been detected as PUP.Downloader
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
1ce59db0ac97cb9f07906bb01992019b |
| Size: |
433 KB |
| First Published: |
2017-09-20 10:02:45 (7 years ago) |
| Latest Published: |
2018-07-23 18:01:51 (6 years ago) |
| Status: |
PUP.Downloader (on last analysis) |
|
| Analysis Date: |
2018-07-23 18:01:51 (6 years ago) |
Overview
| %profile%\downloads |
| %sysdrive%\$recycle.bin\s-1-5-21-1553067980-118658055-2133758858-1002 |
| %sysdrive%\$recycle.bin\s-1-5-21-1237770463-2482151453-3082163701-1000\$r5uiwek\backup set 2015-09-01 121112\backup files 2015-11-27 153706\backup files 2.zip\c\users\жека |
| MediaGet_id829665ids1s.exe |
| $RO9XKZ3.exe |
| MediaGet_id3428880ids2s.exe |
| MediaGet_id1583346ids2s.exe |
| MediaGet_id1584749ids2s.exe |
| MediaGet_id3428752ids2s.exe |
| MediaGet_id1583448ids2s.exe |
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000fdd40 |
| Name |
Size of data |
MD5 |
| UPX0 |
0 |
00000000000000000000000000000000 |
| UPX1 |
274432 |
0cfdf718d9c257fab56854dec257ccb2 |
| .rsrc |
162816 |
39173a4f544f4465c9c62c4383f6e050 |
