Status
Trojan.Agent
Identity
a101544a8a79ee3c1584de630be96ee4
Source
GridinSoft ThreatInfo
MD5
a101544a8a79ee3c1584de630be96ee4
Latest seen
2022-10-24 23:57:39 (3 years ago)
First seen
2017-05-25 16:09:56 (8 years ago)
Size
128 KB
Analyst brief
What this report says
GridinSoft Anti-Malware detects 0X48040023.exe as Trojan.Agent. The sample was last observed on 2022-10-24 23:57:39 (3 years ago).
This page combines the detection verdict with file identity, publisher metadata, alternate names, observed paths, geography, OS signals, and PE details so the report reads as a triage record rather than a standalone download page.
GridinSoft Anti-Malware detection
Detected by GridinSoft before you download
The current ThreatInfo record shows this exact file hash detected as Trojan.Agent. Download GridinSoft Anti-Malware to scan the device, confirm whether this file is present, and remove the detected object if it is found.
- Detection name
- Trojan.Agent
- Recommended action
- Scan and remove
- Last analysis
- 2022-10-24 23:57:39 (3 years ago)
- File hash
- a101544a8a79ee3c1584de630be96ee4
Download Anti-Malware
Why it matters
Why GridinSoft flags this file
Detection
GridinSoft identifies the sample as Trojan.Agent.
Timeline
First seen 2017-05-25 16:09:56 (8 years ago); latest analysis 2022-10-24 23:57:39 (3 years ago).
Aliases
This hash has appeared under multiple file names, which can happen with repackaging, bundling, or deliberate renaming.
Observed locations
ThreatInfo has seen this file in user or system paths listed below. Unexpected locations increase the need for local verification.
Recommended action
What to do next
- Compare the MD5 above with the file found on the device.
- Check whether the file appears in the observed locations or under one of the alternate names.
- Run GridinSoft Anti-Malware to confirm the detection and remove the file if it is present.
0X48040023.exe is a Windows file recorded in the ThreatInfo database.
The current detection status is Trojan.Agent, based on the latest analysis from 2022-10-24 23:57:39 (3 years ago).
If 0X48040023.exe appears on your computer unexpectedly, treat it as suspicious. Check its location, digital signature, and recent system changes before allowing it to run. A full anti-malware scan is recommended when this file is detected as Trojan.Agent.
File Details
| MD5: |
a101544a8a79ee3c1584de630be96ee4 |
| Size: |
128 KB |
| First Published: |
2017-05-25 16:09:56 (8 years ago) |
| Latest Published: |
2022-10-24 23:57:39 (3 years ago) |
| Status: |
Trojan.Agent (on last analysis) |
|
| Analysis Date: |
2022-10-24 23:57:39 (3 years ago) |
The screenshot is a visual record of a GridinSoft Anti-Malware detection for this sample. Use the hash and metadata above as the primary identifiers when comparing the file on your system.
| %appdata% |
| %desktop%\pro yazılım\extenshippro\assets |
| %desktop%\herşey |
| %desktop%\pro yazılım\extenshippro |
| %desktop%\müzikler |
| %desktop%\pro yazılım |
| %sysdrive%\hüseyin\hüseyin önemli\progrm\adobe.photoshop.cc.2018.v19.1.2.45971.x64\photoshopx64\build\asu\packages\acc |
| %sysdrive%\hüseyin\hüseyin önemli\progrm\adobe.photoshop.cc.2018.v19.1.2.45971.x64\photoshopx64\build\asu2\resources\dictionary |
| %sysdrive%\hüseyin\hüseyin önemli |
| %sysdrive%\hüseyin\hüseyin önemli\progrm\adobe.photoshop.cc.2018.v19.1.2.45971.x64\photoshopx64\build\asu2\packages |
ThreatInfo has observed 0X48040023.exe in the locations listed above. Files found in temporary folders, user profile folders, startup locations, or unusual application directories should be reviewed more carefully than files installed under a known program directory.
MusaLLaT.exe
Firmware.exe
Setup.exe
kdrl.exe
dr.fone toolkit for Android.exe
HeadImage.exe
User Account Pictures.exe
Default.exe
iTunes.exe
Bonjour 3.1.0.1.exe
config.exe
i386.exe
CommonCustomActions.exe
amd64.exe
Root.exe
WhatsApp.exe
iTunes 12.6.1.25.exe
driver.exe
Contact.exe
.oracle_jre_usage.exe
2.2.0.110.exe
Reference Baselines.exe
SMS.exe
SC Info.exe
Languages.exe
iPhone Temporary Files.exe
AppleApplicationSupport 5.4.1.exe
adi.exe
Installer.exe
Animations.exe
5.00iwn.exe
Apple Mobile Device Support 10.0.1.3.exe
iPhone Temporary Files 1.exe
tools.exe
6.0.3.17227.exe
MSVCRT.exe
ToolKit.exe
B2C_Client.exe
Apple Mobile Device Support 10.3.2.3.exe
1.0.98.0.exe
image.exe
p.exe
DriverInstaller.exe
PerformanceTest.exe
Temp.exe
Lockdown.exe
Drivers.exe
Eula.exe
Apple Mobile Device Support 10.3.1.2.exe
{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}.exe
Heartbeat.exe
CBS.exe
LGMOBILEAX.exe
Language.exe
Apple Software Update 2.3.0.177.exe
NetworksCache.exe
AppleApplicationSupport 5.5.exe
1.0.0.exe
LGE.exe
Cache.exe
AppleApplicationSupport 5.3.1.exe
extractor.exe
passmarkRating.exe
G2D_ROTATION.exe
YP-Q2.exe
YP-R1.exe
GT-C3222W.exe
YP-Z5.exe
ME_LATENCY.exe
GT-S3710.exe
G3D_D3D11.exe
SHW-A200S.exe
SPH-W8200.exe
diRating.exe
win32.exe
CPU_ENCRYPTION.exe
GT-I7800.exe
DomesticPrev.exe
SCH-W770.exe
SGH-J700i.exe
SPH-W9350.exe
P2.exe
MBP200.exe
SCH-I909.exe
Help.exe
GT-S7508.exe
WebSync.exe
SHW-M250S.exe
GT-N7105T.exe
.manager.exe
DI_WRITE.exe
05-25-2017-12-31-44.exe
ME_LARGE.exe
GT-S3500.exe
SHC-Z120L.exe
GT-B5722.exe
SCH-W780.exe
B2100.exe
SCH-B900.exe
YP-U4.exe
GT-E1100.exe
S3310.exe
GT-S5230C.exe
GT-S5230R.exe
SGH-A897.exe
SGH-T139.exe
SGH-T459.exe
SPH-W5500.exe
SCH-W760.exe
S8000.exe
PrinterData.exe
App.exe
SCH-W750.exe
GT-E1088C.exe
SPH-W4200.exe
GT-S6358.exe
SGH-A777.exe
SCH-W820.exe
G3D_D3D12.exe
SCH-F859.exe
M1.exe
GT-I5700.exe
GT-S5233A.exe
SHW-M380K.exe
YP-MB2.exe
Printer.exe
GT-B5722C.exe
GT-B6520.exe
GT-B5310.exe
SCH-R350.exe
YP-RB.exe
DI_RANDOM.exe
US.exe
CDAS2PC.exe
SGH-A177.exe
GT-S5620.exe
CD_READ.exe
GT-S3550.exe
S8300.exe
C3053.exe
GT-M8920.exe
extendedlocal.exe
SP_FT_Dump_05-25-2017-13-32-44.exe
CH-E18.exe
SGH-I747M.exe
org.eclipse.core.runtime.exe
E1150.exe
GT-S5230L.exe
YP-MB1.exe
YP-CM3.exe
SP_FT_Dump_05-25-2017-13-18-09.exe
SGH-T456.exe
SPH-W9100.exe
GT-S3100.exe
GT-C5212.exe
Q1.exe
S8300T.exe
S3.exe
SPH-M7200.exe
GT-I9305.exe
C5212.exe
Kies.exe
CPU_SINGLETHREAD.exe
SPH-W9300.exe
GT-I9305N.exe
SHW-A220S.exe
settings.exe
YP-P2.exe
T10.exe
GT-i8320.exe
SGH-i900.exe
resources.exe
SPH-W8700.exe
GT-P7510.exe
SCH-W940.exe
SHW-M380W.exe
CPU_SORTING.exe
GT-I8250.exe
lib.exe
G2D_GUI.exe
SCH-W930.exe
GT-B7350.exe
YP-T10.exe
YP-Q1.exe
SGH-A887.exe
GT-S3600i.exe
GT-N7105.exe
EPM.exe
QPST.exe
SHV-E170K.exe
SGH-D900E.exe
U3[MTP].exe
SPH-W8400.exe
GT-S8500L.exe
SCH-F619.exe
G2D_COMPLEX.exe
E250i.exe
org.eclipse.update.exe
GT-S5698.exe
GT-I7410.exe
GT-C3510.exe
HMX-S10.exe
GT-C3222.exe
SHW-A220K.exe
YP-S5.exe
org.eclipse.osgi.exe
SPH-M7350.exe
ME_READ_S.exe
U5[MTP].exe
SCH-R360.exe
S8500.exe
G3D_D3D10.exe
SHW-M410K.exe
TicToc-R.exe
CPU_COMPRESSION.exe
SP_FT_Dump_05-25-2017-13-19-12.exe
SCH-W319.exe
SCH-i509.exe
CPU_FLOATINGPOINT_MATH.exe
RoboForm.exe
GT-I6500U.exe
SCH-A177.exe
Z3.exe
R2.exe
GT-I9300T.exe
ME_READ_L.exe
GT-E1150C.exe
GT-C3010S.exe
SGH-J150.exe
Local.exe
SPH-W9600.exe
G2D_REPLICATION.exe
SCH-R860.exe
SCH-M720.exe
SGH-J708I.exe
SGH-A877.exe
YP-P3.exe
YP-CP3.exe
G2D_DIRECT2D.exe
GT-B6520L.exe
SGH-T959D.exe
SHW-M100S.exe
DI_READ.exe
SCH-B189.exe
GT-B3310i.exe
configuration.exe
GT-E1150.exe
GT-I8000H.exe
SPH-B8850D.exe
SPH-W7100.exe
SPH-W7700.exe
GT-S6108.exe
GT-S5230.exe
E2510.exe
SHW-A160S.exe
ME_ALLOC_S.exe
GT-S5560.exe
YP-PB2.exe
GT-I9000M.exe
YP-U3.exe
GT-S8300.exe
GT-N7100.exe
SHW-A200K.exe
SCH_W609.exe
GT-B7610.exe
g3dRating.exe
SCH-F299.exe
SHW-A130K.exe
YP-U6.exe
Services.exe
S3500.exe
GT-I9000.exe
GT-C3630C.exe
U4.exe
YP-T9.exe
log.exe
R1.exe
U5.exe
SHW-M250L.exe
SHW-A180S.exe
GT-P7500.exe
GT-B7300.exe
ME_WRITE.exe
Strings.exe
C3050.exe
YP-S2.exe
I8910.exe
SGH-F480i.exe
GT-E2510.exe
GT-C3050C.exe
YP-VX1.exe
YP-R0.exe
GT-I9200.exe
SGH-I747.exe
SCH-W830.exe
SCH-M710.exe
GT-S3650.exe
YP-P3P.exe
cpuRating.exe
GT-I5500.exe
S3500C.exe
GT-S8000.exe
SGH-T749.exe
SCH-R900.exe
meRating.exe
SCH-I535.exe
SHW-M380S.exe
G2D_SIMPLE.exe
GT-I9300.exe
SPH-W8300.exe
SGH-T469V.exe
SPH-B8850.exe
GT-S5600.exe
GT-P1000M.exe
C3010S.exe
YP-M1.exe
SPH-W8350.exe
SGH-A867.exe
SCH-W960.exe
CPU_PRIME.exe
TicToc.exe
G2D_FONT.exe
4c971bb8-8dd0-49c4-bdc9-338322b59ecc.exe
GT-I5700L.exe
Common.exe
GT-P1000R.exe
Domestic.exe
Chart Data.exe
SCH-W920.exe
GT-S8500.exe
S5.exe
SP_FT_Dump_06-05-2017-13-03-22.exe
SP_FT_Dump_06-21-2017-17-32-53.exe
GT-M8910.exe
SHC-Z100S.exe
SP_FT_Dump_05-25-2017-11-35-01.exe
G3D_COMPLEX.exe
M7600.exe
SPH-M8400.exe
g2dRating.exe
SCH-E189.exe
PSU.exe
SGH-T469.exe
P3.exe
CL65.exe
Outlook.exe
SGH-T999V.exe
R0.exe
GT-I8000.exe
CPU_PHYSICS.exe
SGH-I317M.exe
CPU_INTEGER_MATH.exe
SHW-A110S.exe
GT-S8500B.exe
SM.exe
GT-C3010.exe
GT-S3653.exe
SGH-T479.exe
GT-C5220.exe
G3D_MEDIUM.exe
GT-E2120L.exe
SHW-M250K.exe
SCH-M715.exe
SHW-A240S.exe
GT-I9305T.exe
GT-I6800.exe
GT-S3930C.exe
SHC-Z140S.exe
YP-VP1.exe
ME_THREADED.exe
SHW-A110K.exe
G3D_DIRECTCOMPUTE.exe
SCH-W880.exe
Q2.exe
Q3.exe
SPH-W9705.exe
bundles.exe
GT-B3310.exe
SCX-3400 Series.exe
GT-E2120.exe
SGH-I896.exe
.settings.exe
USDoe1.exe
GT-S5233T.exe
CPU_MATRIX_MULT_SSE.exe
05-25-2017-12-32-22.exe
SHW-A130S.exe
SGH-E250i.exe
GT-S6700T.exe
PerformanceTest9.exe
SCH-R360-VE.exe
GT-E1070C.exe
I8510.exe
GT-B3410.exe
GT-S5233S.exe
U6.exe
YP-S3.exe
SPH-L710.exe
SCH-B890.exe
SP_FT_Dump_05-25-2017-11-24-07.exe
ProgramData.exe
05-25-2017-13-05-31.exe
GT-E1410.exe
QQDownload.exe
DataConfig.exe
AccountPictures.exe
Documents.exe
System Tools.exe
DrFoneAndroid.exe
onekeyroot_release.exe
Public.exe
Group1.exe
db.exe
WIA.exe
DeviceConnection.exe
WAF.exe
Quick Launch.exe
Sessions.exe
Shell.exe
imageformats.exe
Accessibility.exe
color.exe
PurchaseStore.exe
Accessories.exe
Maintenance.exe
Packages.exe
FlashRootPackage.exe
Libraries.exe
Group2.exe
handle.exe
Group3.exe
UnRoot.exe
Windows Sidebar.exe
Desktop.exe
Logs.exe
ImageCache.exe
Music.exe
SendTo.exe
Videos.exe
WSRoot.exe
Pictures.exe
Update.exe
06-21-2017-16-41-37.exe
Downloads.exe
Tasks.exe
DataBase.exe
OneKeyRoot.exe
Wondershare.exe
Download.exe
view.exe
ELRON YEDEK.exe
icons.exe
Volkan Konak (2009).exe
ExtenshipPRO.exe
CCSyncPlugin.exe
en_IL.exe
Bitki 2.exe
cs_CZ.exe
AdobeGCClient.exe
P7.exe
DesignLibraryPlugin.exe
en_GB.exe
HDBox.exe
HomePanel.exe
Arcgis.exe
UWA.exe
MarketPanel.exe
P6.exe
ACCC.exe
IPC.exe
D6.exe
en_US.exe
es_LA.exe
Bitki Listesni.exe
maket.exe
da_DK.exe
ADS.exe
BM2.exe
BehancePanel.exe
Runtime.exe
SignInApp.exe
info.exe
TCC.exe
ASU2.exe
BM2 BIGNONIACEAE catalpagiller +.exe
ExchangePlugin.exe
es_MX.exe
SynKit.exe
CCXProcess.exe
CCM.exe
ElevationManager.exe
HDCore.exe
Notifications.exe
BM2 EUPHORBIACEAE.exe
en_AE.exe
LWA.exe
_Anticloud.Rev.3-V.R.exe
AssetsPanel.exe
Core.exe
CEF.exe
es_NA.exe
LiveType.exe
Adobe.Photoshop.CC.2018.v19.1.2.45971.x64.exe
AAM.exe
BM2 MORACEAE dutgiller +.exe
DWA.exe
DECore.exe
Foto.exe
CCLibrary.exe
CoreSyncExtension.exe
CoreSync.exe
HEX.exe
Dersler Word halinde.exe
BM2 PROTEACEAE+.exe
Bitki.exe
Utils.exe
BM2 VERBENACEAE minegiller+.exe
AppsPanel.exe
BM2 MAGNOLIACEAE manolyagiller +.exe
ASU.exe
NHEX.exe
Esra.exe
FilesPanel.exe
de_DE.exe
es_ES.exe
SPanel.exe
CoreExt.exe
en_XM.exe
FontsPanel.exe
0X24100000.exe
VISTA64.exe
Win7x64.exe
AMICOSINGLUN.exe
PTG.exe
DATA.exe
32.exe
0X28200000.exe
OEM.exe
64-bit.exe
PT-BR.exe
64.exe
0X21100000.exe
Linux.exe
200.exe
ACR10.2.1.exe
WIN7_64.exe
ZH-CN.exe
217.exe
CUSTOM.exe
205.exe
COLORTABLE.exe
JA-JP.exe
Win7x86.exe
SV-SE.exe
54X86.exe
CHS.exe
KO-KR.exe
SketchUpPrerequisites.exe
DE-DE.exe
0X00000004.exe
COSY2.4.6.exe
ALCOR.exe
FRA.exe
0X28100000.exe
32-bit.exe
FR-FR.exe
LIFEFRAME3.exe
fr_XM.exe
213.exe
ARB.exe
nb_NO.exe
0X14000000.exe
ja_JP.exe
210.exe
AIRECOVERY.exe
ES-ES.exe
DA-DK.exe
216.exe
NL-NL.exe
SMARTLOGON.exe
Videoo.exe
X32.exe
ENG.exe
CHIPSET.exe
PLK.exe
fr_FR.exe
WinXP.exe
ko_KR.exe
211.exe
ELL.exe
ATKPACKAGE.exe
223.exe
COCM1.0.exe
MULTIFRAME.exe
0X24800000.exe
Doc.exe
0X28088000.exe
fr_CA.exe
PFW.exe
Desktop_Turkish.exe
0X22400000.exe
ITA.exe
0X00000010.exe
fr_MA.exe
0X24200000.exe
COPYPROTECT.exe
NB-NO.exe
220.exe
uk_UA.exe
NONAUPTN.exe
CHT.exe
0X21001000.exe
206.exe
rsrc.exe
ZH-TW.exe
0X22000080.exe
ArcGIS_Desktop.exe
PTB.exe
AIR.exe
PHSP19.1.2.exe
nl_NL.exe
EN-US.exe
DEU.exe
215.exe
208.exe
WIRELESS_CONSOLE3.exe
tr_TR.exe
SVE.exe
218.exe
pl_PL.exe
0X24080000.exe
BRCMWIN7.exe
VISTA.exe
95DRV.exe
VistaX86.exe
0X28400000.exe
IT-IT.exe
SetupFiles.exe
BLUETOOTH.exe
ESP.exe
Lumion 6.0 Pro crack.exe
Documentation.exe
DOS.exe
sketch up 2017.exe
SketchUp.17.2.2555.exe
X64.exe
ru_RU.exe
TOSHIBA.exe
it_IT.exe
THA.exe
212.exe
pt_BR.exe
0X22000020.exe
0X21080000.exe
HUN.exe
RU-RU.exe
2012 resim.exe
EXPRESSGATE.exe
54X64.exe
207.exe
0X21000800.exe
0X28000000.exe
HEB.exe
Utility.exe
LIVEUPDATE.exe
204.exe
crack.exe
219.exe
DRIVERINS64.exe
0X22000040.exe
0X20000100.exe
zh_TW.exe
WIN7.exe
TURBOBOOSTMONITOR.exe
7.0.exe
MAC.exe
MKE.exe
VIRTUAL_CAMERA.exe
FRC.exe
COPS1.0.exe
WinXPX64.exe
209.exe
hu_HU.exe
AMUSTOR.exe
asus.exe
TRK.exe
100OLYMP.exe
PRELOAD.exe
READER9.exe
AREADER.exe
FANCYSTART.exe
SRS.exe
FIN.exe
zh_CN.exe
fi_FI.exe
5.0.exe
AdobeApplicationManager-1.0_update14.exe
CORE1.0.exe
3_1.exe
sv_SE.exe
0X22000200.exe
Build.exe
SVCPACK.exe
Progrm.exe
WINFLASH.exe
bin.exe
Lumion 6.0 + Crack.exe
MEI.exe
SKIN.exe
CONTROLDECK.exe
DAN.exe
RUS.exe
EMANUAL.exe
WIN64.exe
WIN7_32.exe
224.exe
ADSM.exe
DATA64.exe
CORG1.1.exe
0X22000010.exe
SPLENDID.exe
CSY.exe
Supplement.exe
JPN.exe
SSAVER.exe
DRIVERINS.exe
AUDIO.exe
ARA.exe
WINDOWS.exe
BRCMVISTA.exe
ENU.exe
MANUAL.exe
ALL.exe
225.exe
TEAC.exe
VistaX64.exe
META-INF.exe
IA64.exe
NLD.exe
NOR.exe
FAC.exe
95.exe
0X24400000.exe
0X00001000.exe
KOR.exe
small_tab.exe
1046.exe
MultiTab.exe
0X48040006.exe
WhatsApp Video.exe
OE.exe
button.exe
1055.exe
FaceIcon.exe
Xtml.exe
Edited.exe
0X40080000.exe
OE64.exe
AERequire.exe
CheckButton.exe
img.exe
Kimlik.exe
1049.exe
locale.exe
com.tencent.tmgp.jxqy.exe
Screenshots.exe
Component.exe
0X20008000.exe
Edit.exe
ScrollBar.exe
0X40000020.exe
1054.exe
OL.exe
0X40000100.exe
giyim.exe
1066.exe
1057.exe
0X48040007.exe
AppMarket.exe
com.tencent.tmgp.gbits.atm.exe
0X48040013.exe
0X40000080.exe
com.tencent.KiHan.exe
animation.exe
window.exe
0X20000020.exe
0X40008000.exe
com.tencent.tmgp.l10.exe
0X41000000.exe
TypeDef.exe
NewGuide.exe
Camera.exe
com.tencent.tmgp.tkchj1.exe
locales.exe
ListCtrl.exe
0X40800000.exe
AOW_Rootfs.exe
com.game37.bayechuanqi.exe
Tapdk.exe
okul mezeun Veda yemegi.exe
com.tencent.tmgp.tstl.exe
gamemigrate.exe
32BIT.exe
loading.exe
BEBKA.exe
3 AYLIKLAR.exe
RadioButton.exe
0X48040022.exe
1.exe
2.exe
com.tencent.tmgp.xymobile.exe
0X48040014.exe
com.tencent.ig.exe
com.tencent.tmgp.mhxy.sqsy.exe
Menu.exe
Jack.exe
com.tencent.tmgp.sgame.exe
QQFace.exe
Yem bitkisi.exe
belgelerimmm.exe
plugins.exe
0X48040005.exe
0X48040004.exe
0X40010000.exe
com.tencent.tmgp.ylm.exe
0X48040020.exe
0X20000040.exe
100ANDRO.exe
201.exe
Eski resimler.exe
0X40000010.exe
Komutan.exe
Tatil.exe
EDITED_VIDEO.exe
0X40004000.exe
Facebook.exe
Sketch.exe
dgs filan.exe
`SGB.exe
Instagram.exe
Ziraat glence.exe
SICTOOL.exe
RemoteControl.exe
0X48000002.exe
0X20000400.exe
0X48040003.exe
WXFace.exe
Movies.exe
0X48040010.exe
1033.exe
1028.exe
ConfigFile.exe
GF186.exe
0X48001000.exe
tab.exe
0X48000800.exe
hardwarecheck.exe
progress.exe
ClickAnimation.exe
Proje.exe
2052.exe
0X00080000.exe
0X00000200.exe
com.tencent.tmgp.dragonnest.exe
0X40002000.exe
Sent.exe
com.garena.game.kges.exe
0X40000200.exe
0.exe
Resource.exe
2014 Memur.exe
0X48040011.exe
com.lejdnc.tkc.exe
0X40020000.exe
WhatsApp Images.exe
Zam ve Tazminatlar.exe
0X40000800.exe
0X40000400.exe
0X48040008.exe
I18N.exe
com.tencent.tmgp.coslegend.exe
0X48040012.exe
WhatsApp Audio.exe
UI.exe
ShaderCache.exe
didim.exe
0X40001000.exe
0X00000800.exe
0X00100000.exe
RULE.exe
com.qqgame.hlddz.exe
0X40040000.exe
0X48040009.exe
Logon.exe
com.tencent.tmgp.ffom.exe
0X48040002.exe
0X20000001.exe
0X48040023.exe
This hash has been seen with multiple file names. Alternate names can appear when software is updated, copied between folders, packed by an installer, or deliberately renamed to avoid recognition. Compare the exact MD5 above before assuming two names refer to the same file.
Geographic signal
Observed country distribution
ThreatInfo has seen 0X48040023.exe across 1 countries. Use this signal to compare local evidence with where the sample is most often reported.
Top country
Turkey
Share
100.0%
The strongest geographic signal for this file is Turkey with 100.0% of observed hits. Geographic distribution can help identify targeted campaigns, regional software bundles, or where a file is most commonly reported.
The most common operating system signal for 0X48040023.exe is Windows 7 with 63.5% of observed hits. If your system differs from the common profile, check whether the file was introduced by a specific installer, archive, or removable device.
Analysis
0X48040023.exe is identified as pe for 32-bit systems.
The subsystem is Windows GUI.
PE header values are useful for triage, especially when they do not match the expected publisher, product, or release timeline.
Format
pe
Architecture
32-bit
Subsystem
Windows GUI
Entry point
0x00076580
Image base
0x00400000
Sections
3
Raw data
130560
Section layout highlights raw-size concentration, repeated names, packer markers, and hashes that can be compared across related samples.
UPX0
0 bytes · 0.0% of section data
Packer marker
Uncommon name
MD5
00000000000000000000000000000000
UPX1
49664 bytes · 38.0% of section data
Packer marker
Uncommon name
MD5
7c3d25e873264d3b796666707dd18970
.rsrc
80896 bytes · 62.0% of section data
MD5
ce2bb564f71ddc551f709778c872f44f
PE section names and hashes can reveal packing, injected resources, or unusual build artifacts. Sections with uncommon names, very large raw data, or hashes that differ from a trusted copy deserve additional review.
Report conclusion
GridinSoft detects this file as Trojan.Agent
This report identifies 0X48040023.exe by MD5 a101544a8a79ee3c1584de630be96ee4. If the same file is present on your device, scan the system and remove the detected object after confirming the hash and location.
Recommended next steps
- Compare the local file MD5 with a101544a8a79ee3c1584de630be96ee4.
- Check the file path, publisher, and signature against the details in this report.
- Run a GridinSoft scan and remove the object if the same hash is found.
