How to remove 5D0A.exe
5D0A.exe
The module 5D0A.exe has been detected as Trojan.Agent
File Details
| Product Name: | Realtek HD Auido Update and remove driver Tool |
| Company Name: | Realtek Semiconductor Corp. |
| MD5: | 415442e32c0068b900b5ba502ada9f8a |
| Size: | 2 MB |
| First Published: | 2021-08-24 20:22:18 (3 years ago) |
| Latest Published: | 2021-09-08 20:56:00 (3 years ago) |
| Status: | Trojan.Agent (on last analysis) | |
| Analysis Date: | 2021-09-08 20:56:00 (3 years ago) |
Overview
| Signed By: | Corel Corporation |
| Status: | Invalid (digital signature could be stolen or file could be patched) |
Common Places:
| %temp% |
| %temp% |
| %temp% |
| %temp% |
| %temp% |
| %temp% |
| %temp% |
| %temp% |
Geography:
| 37.5% | ||
| 25.0% | ||
| 12.5% | ||
| 12.5% | ||
| 12.5% |
OS Version:
| Windows 10 | 75.0% | |
| Windows 7 | 12.5% | |
| Windows 8 | 12.5% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x00473f88 |
PE Sections:
| Name | Size of data | MD5 |
| 98816 | df2a4c3b7dd66adbd674ad31b731e40d | |
| 2048 | 508566cb6b6d91da8de7c473ae205fc0 | |
| 46592 | 8b2642ce8b36778f1556db32cc02256f | |
| 512 | 13688bdaf3b3b39c3878efeb2614d6d1 | |
| .idata | 512 | c59a21b8569552638f4f2a8d846fbe57 |
| | âš›ï¸ | 103424 | 2c928a39a6fefc30881b0495300a235c |
| .themida | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .boot | 2163712 | 08014f939cc8c3053e77b12708e9af67 |
| .rsrc | 103424 | b0f1e49f80a76624c385667bab1cf24a |
More information:
Download GridinSoft
Anti-Malware - Removal tool for 5D0A.exe
