How to remove 289E.tmp.exe

» File
File Details
Overview
Analysis

289E.tmp.exe

The module 289E.tmp.exe has been detected as Rootkit.Gen

289E.tmp.exe

Remove 289E.tmp.exe

File Details

Main Info:

Product Name:	Microsoft Outlook
Company Name:	Microsoft Corporation
MD5:	f39d318cf7d2da7e79eabb24b010c6c4
Size:	1 MB
First Published:	2021-01-15 08:37:38 (4 years ago)
Latest Published:	2021-01-15 08:37:38 (4 years ago)

Analysis:

Status:	Rootkit.Gen (on last analysis)
Analysis Date:	2021-01-15 08:37:38 (4 years ago)

Overview

Digital Signature

Signed By:	上海域联软件技术有限公司
Status:	Valid

Common Places:

%temp%

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x000b93ee

.NET Info:

MVID:	11e93388-5a62-4511-b7d3-78f53f56dd9c
Typelib ID:	b753f546-cb5a-4cad-ac86-f742693c6015

PE Sections:

Name	Size of data	MD5
.text	750592	5fe15a29be661028c4fbe109ef25b38f
.rsrc	1010176	f4618bd4c7e5274b77bc997fb0b35786
.reloc	512	dfc59c408f834121624a8b199db125b1

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for 289E.tmp.exe

copyright for information about 289E.tmp.exe