How to remove 0322[1].rar

0322[1].rar

The module 0322[1].rar has been detected as Trojan.TrickBot

0322[1].rar
Remove 0322[1].rar

File Details

Product Name:

IntelliJ Platform
Company Name:

JetBrains s.r.o.
MD5: eeffc2e8026b340857cfe97656151278
Size: 1 MB
First Published: 2018-03-23 08:08:19 (7 years ago)
Latest Published: 2021-03-16 21:36:18 (4 years ago)
Status: Trojan.TrickBot (on last analysis)
Analysis Date: 2021-03-16 21:36:18 (4 years ago)

Common Places:

%windir%
%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5
%sysdrive%\$recycle.bin
%profile%\efault user\local settings\temporary internet files\content.ie5
%system%\config\systemprofile\local settings\temporary internet files\content.ie5
%system%\config\systemprofile\local settings\temporary internet files\content.ie5
%system%\config\systemprofile\local settings\temporary internet files\content.ie5
%windir%
%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5

File Names:

lsmosee.exe
0322[1].rar
$R7F31GG.exe
0322[2].rar
0322[3].rar

Geography:

21.6%
13.5%
13.5%
10.8%
10.8%
8.1%
8.1%
5.4%
2.7%
2.7%
2.7%

OS Version:

Windows 7 68.4%
Windows Server 2008 R2 21.1%
Windows Server 2003 5.3%
Windows XP 5.3%

Analysis

Subsystem: Windows CUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000106ae

PE Sections:

Name Size of data MD5
326144 7cc33cbbf64720203473b6d339859927
88064 c6ed9aa4e7da5dbbfedcbee9ec9787f8
17920 4a8889b4fc992f763256cc06c12053dd
512 53c2143d0572fcdbfa18db3676cd70a7
1536 ac3e7931c404e93390beb5e74eafbf01
512 255d9a99451394bc12567381ea8f0411
25088 155f480749935dbf80745c996e85c327
.rsrc 2560 3a5a0b5f28d864fee08fc1cdb270a735
178688 93641d1aebea9810aa65bdc38ef39ce4
.data 900096 c87c135373a30d19305139ec2c67f87f

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for 0322[1].rar
copyright for information about 0322[1].rar