How to remove 81F7.tmp.exe

» File
File Details
Overview
Analysis

81F7.tmp.exe

The module 81F7.tmp.exe has been detected as Trojan.Downloader

81F7.tmp.exe

Remove 81F7.tmp.exe

File Details

Main Info:

Product Name:	Notepad++
Company Name:	Don HO don.h@free.fr
MD5:	07177a20af57d8ee12f8ec105c1183ab
Size:	1 MB
First Published:	2021-02-05 16:11:32 (4 years ago)
Latest Published:	2021-02-05 16:11:32 (4 years ago)

Analysis:

Status:	Trojan.Downloader (on last analysis)
Analysis Date:	2021-02-05 16:11:32 (4 years ago)

Overview

Digital Signature

Signed By:	Notepad++
Status:	Invalid (digital signature could be stolen or file could be patched)

Common Places:

%appdata%

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00143efe

.NET Info:

MVID:	538dfb1a-9a11-425a-80f2-283bc8279a31
Typelib ID:	d9fd4c2b-290b-4e8d-877f-fa0b09dd455e

PE Sections:

Name	Size of data	MD5
.text	1318912	5d3bdd76bad695d8e5448972a899a6e5
.rsrc	223232	229aad28db4ab0f4f77ba3cc0fe5b3ce
.reloc	512	c058819fbc0beaa4ded40779f66e70b9

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for 81F7.tmp.exe

copyright for information about 81F7.tmp.exe