How to remove $RZG3NKT.exe
- File Details
- Overview
- Analysis
$RZG3NKT.exe
The module $RZG3NKT.exe has been detected as PUP.Gen
File Details
| MD5: |
c00ba4d3efd7e78ebd997895b63d85d9 |
| Size: |
157 KB |
| First Published: |
2017-09-13 13:04:08 (7 years ago) |
| Latest Published: |
2018-07-12 14:04:37 (6 years ago) |
| Status: |
PUP.Gen (on last analysis) |
|
| Analysis Date: |
2018-07-12 14:04:37 (6 years ago) |
Overview
| %profile%\documents |
| %sysdrive%\$recycle.bin\s-1-5-21-526679147-4141901268-3447306841-1001 |
| %localappdata%\microsoft\windows\filehistory\data\342\c\users\pat\downloads |
| %sysdrive%\$recycle.bin\s-1-5-21-2249405105-1809133596-1194886511-1001 |
| %localappdata%\microsoft\windows\filehistory\data\393\c\users\pat\downloads |
| %profile%\downloads |
| %profile% |
| ccl-setup.exe |
| $RZG3NKT.exe |
| $R9SHHWS.exe |
| $REGFC41.exe |
| $R4MVTGB.exe |
| $RT8Q9F0.exe |
|
28.6% |
|
|
21.4% |
|
|
14.3% |
|
|
14.3% |
|
|
7.1% |
|
|
7.1% |
|
|
7.1% |
|
| Windows 10 |
50.0% |
|
| Windows 8 |
28.6% |
|
| Windows 7 |
21.4% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0000316d |
| Name |
Size of data |
MD5 |
| .text |
24064 |
1d853b2e9c356730b666d8e1eddf5ee4 |
| .rdata |
5120 |
43fab6a80651bd97af8f34ecf44cd8ac |
| .data |
1024 |
4d3aee6f6a049c291967517d309fc019 |
| .ndata |
0 |
00000000000000000000000000000000 |
| .rsrc |
60416 |
6a2dc796c5b7f64141278f648deb565e |
