How to remove 970B.exe
970B.exe
The module 970B.exe has been detected as Trojan.Generic
File Details
| Product Name: | Realtek HD Auido Update and remove driver Tool |
| Company Name: | Realtek Semiconductor Corp. |
| MD5: | ebed5b4e23dc7bc73a207b16bf8decd7 |
| Size: | 3 MB |
| First Published: | 2021-08-21 20:13:53 (3 years ago) |
| Latest Published: | 2021-08-21 20:13:53 (3 years ago) |
| Status: | Trojan.Generic (on last analysis) | |
| Analysis Date: | 2021-08-21 20:13:53 (3 years ago) |
Overview
| Signed By: | Corel Corporation |
| Status: | Invalid (digital signature could be stolen or file could be patched) |
Common Places:
| %temp% |
Geography:
| Egypt | 100.0% |
OS Version:
| Windows 7 | 100.0% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x0051c938 |
PE Sections:
| Name | Size of data | MD5 |
| 94208 | 3a3b92ef2a33e333305d348ade244c82 | |
| 2048 | 5ff26720b95aa29c6078d1969c636b90 | |
| BLOTI280 | 200704 | b95ca0bc7a95d97e54e9080cd810dafd |
| 512 | d161a4787c7a061b704ce3b9374a2367 | |
| .idata | 512 | c2a49750b82c7330d9e46dfb6aec5870 |
| .themida | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .boot | 3229696 | 8ae73deb9b56700261812b0e4982a5a4 |
| BLOTI280 | 2560 | 1579a25a0059919f09382f11461a113b |
| .rsrc | 200704 | 5f898e32ff164f4aba1fdf756994a596 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for 970B.exe
