How to remove A0004852.exe

» File
File Details
Overview
Analysis

A0004852.exe

The module A0004852.exe has been detected as Trojan.Downloader

Remove A0004852.exe

File Details

Main Info:

Product Name:	Registry Trash Keys Finder
Company Name:	BELOFF
MD5:	148c6a0c8d0f9f1cfe0f793d45103191
Size:	362 KB
First Published:	2017-10-11 19:10:19 (7 years ago)
Latest Published:	2024-04-13 23:01:18 (7 months ago)

Analysis:

Status:	Trojan.Downloader (on last analysis)
Analysis Date:	2024-04-13 23:01:18 (7 months ago)

Common Places:

%desktop%\beloff

%sysdrive%\beloff 2017.2 (x86 x64) rus

%sysdrive%\новая папка\tc_vim_18

%sysdrive%\компьютер\белофф

%sysdrive%\проги\белофф

%temp%\rar$exa3836.27241.rartemp

%temp%\rar$exa3836.24035.rartemp

%temp%\rar$exa3836.6186.rartemp

%temp%\rar$exa3836.22609.rartemp

File Names:

A0006635.exe

A0004852.exe

P.TrashReg.exe

TrashReg.exe

Geography:

	44.4%
	27.8%
	22.2%
	5.6%

OS Version:

Windows 7	50.0%
Windows 10	44.4%
Windows 8.1	5.6%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x000193af

PE Sections:

Name	Size of data	MD5
.text	101888	c624ae421a6c4f702f7f2c2c23c4aef1
.rdata	16384	746f7c2df0aa9b117542dd3e6429f2f1
.data	2048	07f7ba027ce50640e9ee99eddca1959f
.rsrc	17408	ee4976600ce20f6303986d427a1d5ed7

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for A0004852.exe

copyright for information about A0004852.exe

How to remove A0004852.exe

A0004852.exe

The module A0004852.exe has been detected as Trojan.Downloader

File Details

Main Info:

Registry Trash Keys Finder

BELOFF

Analysis:

Common Places:

Geography:

OS Version:

Analysis

PE Info:

PE Sections:

More information: