How to remove 5h13vablv15.exe
- File Details
- Overview
- Analysis
5h13vablv15.exe
The module 5h13vablv15.exe has been detected as Trojan.Kryptik
File Details
Product Name: |
|
Company Name: |
|
MD5: |
d6ada951073951d7136548e6ad2dce18 |
Size: |
257 KB |
First Published: |
2021-01-09 03:47:00 (4 years ago) |
Latest Published: |
2021-01-09 23:45:03 (4 years ago) |
Status: |
Trojan.Kryptik (on last analysis) |
|
Analysis Date: |
2021-01-09 23:45:03 (4 years ago) |
%sysdrive%\windows.old\users\sz\appdata\local\temp |
%temp% |
%temp% |
%temp% |
%temp% |
%temp% |
%temp% |
%temp% |
%temp% |
%temp% |
|
35.3% |
|
|
23.5% |
|
|
23.5% |
|
|
11.8% |
|
|
5.9% |
|
Windows 10 |
64.7% |
|
Windows 7 |
35.3% |
|
Analysis
Subsystem: |
Windows GUI |
PE Type: |
pe |
OS Bitness: |
32 |
Image Base: |
0x00400000 |
Entry Address: |
0x0003d392 |
MVID: |
6a34c7b0-8433-487a-a511-36c6bc839179 |
Typelib ID: |
d675ec0f-7ff0-4f51-ad07-5db6e9db31e0 |
Name |
Size of data |
MD5 |
.text |
242688 |
b1f272b89020f0ecfc30f4038e1c411e |
.rsrc |
19456 |
410d9037f562329c6cab73e3dca1ead6 |
.reloc |
512 |
80a0629baf60d53020227a8440d784a9 |