How to remove 4ba3a485-6d78-11e7-9d23-80e65024849a.file
- File Details
- Overview
- Analysis
4ba3a485-6d78-11e7-9d23-80e65024849a.file
The module 4ba3a485-6d78-11e7-9d23-80e65024849a.file has been detected as Adware.Somoto
File Details
| MD5: |
f3c14bca37b316604004ca1de2a9e85a |
| Size: |
420 KB |
| First Published: |
2017-05-25 04:09:26 (7 years ago) |
| Latest Published: |
2018-10-20 19:13:27 (6 years ago) |
| Status: |
Adware.Somoto (on last analysis) |
|
| Analysis Date: |
2018-10-20 19:13:27 (6 years ago) |
Overview
| %profile%\downloads\programs |
| %desktop%\malware for experiement |
| %profile%\downloads\download |
| %sysdrive%\yedekler\şahin ahmet - 2\downloads\setupsss |
| %profile%\downloads |
| %localappdata%\shutness\user data\default\file system\001\t |
| %mydoc% |
| %profile% |
| %programfiles%\adware-removal-tool\quarantine\google chrome\default\file system\001\t |
| %chromeprofile%\file system\001\t |
| InternetDownloadManager(IDM)6_downloader-N0gtrT89o.exe |
| 4ba3a485-6d78-11e7-9d23-80e65024849a.file |
| FileDownloadedSuccessfully_downloader-NeQ1Mm1aW.exe |
| FileDownloadedSuccessfully_downloader-N0e0Dc20x.exe |
| FileDownloadedSuccessfully_downloader-NaeKRhv6B.exe |
| FLVPlayerSetup-NeXECHi4k.exe |
| 0038793119_5818818482_sevenzip_downloader-q20we0s1x.exe.exe.exe |
| 00000000 |
| Download_downloader-N2v8ok7R9.exe |
| Download_downloader-N07wOvm1C.exe |
| gFreeMahjongGamesSetup-N4cRt8J30.exe |
| 00000001 |
|
41.7% |
|
|
16.7% |
|
|
16.7% |
|
|
8.3% |
|
|
8.3% |
|
|
4.2% |
|
|
4.2% |
|
| Windows 7 |
41.7% |
|
| Windows 8 |
29.2% |
|
| Windows 8.1 |
16.7% |
|
| Windows 10 |
12.5% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0000323c |
| Name |
Size of data |
MD5 |
| .text |
23552 |
0bc2ffd32265a08d72b795b18265828d |
| .rdata |
4608 |
f179218a059068529bdb4637ef5fa28e |
| .data |
1024 |
975304d6dd6c4a4f076b15511e2bbbc0 |
| .ndata |
0 |
00000000000000000000000000000000 |
| .rsrc |
17920 |
b797daa954ea52b04d3522f91b0a79d9 |
