How to remove 1B4963D9_stp.EXE

» File
File Details
Overview
Analysis

1B4963D9_stp.EXE

The module 1B4963D9_stp.EXE has been detected as Adware.Downloader

1B4963D9_stp.EXE

Remove 1B4963D9_stp.EXE

File Details

Main Info:

Product Name:	The Desktop Weather
Company Name:	ShenZhen Enode Techology co,.Ltd
MD5:	167e2f309991de3a303c52d10631d64c
Size:	5 MB
First Published:	2017-05-30 01:02:31 (7 years ago)
Latest Published:	2019-08-10 10:08:04 (5 years ago)

Analysis:

Status:	Adware.Downloader (on last analysis)
Analysis Date:	2019-08-10 10:08:04 (5 years ago)

Overview

Digital Signature

Signed By:	MEIXIAN XIE
Status:	Valid

Common Places:

%temp%\ns7402fa9c

%temp%

%temp%

%temp%

Geography:

100.0%

OS Version:

Windows 8.1	42.9%
Windows 7	28.6%
Windows 8	28.6%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x000038af

PE Sections:

Name	Size of data	MD5
.text	29696	419d4e1be1ac35a5db9c47f553b27cea
.rdata	11264	cca1ca3fbf99570f6de9b43ce767f368
.data	512	77f0839f8ebea31040e462523e1c770e
.ndata	0	00000000000000000000000000000000
.rsrc	376832	7825654e2b33b34fa86d7bd1c30b7b2e
.reloc	4096	e03ef34b32ec2b71ac49dee6623adccb

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for 1B4963D9_stp.EXE

copyright for information about 1B4963D9_stp.EXE