How to remove A0004852.exe
- File Details
- Overview
- Analysis
A0004852.exe
The module A0004852.exe has been detected as Trojan.Downloader
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
148c6a0c8d0f9f1cfe0f793d45103191 |
| Size: |
362 KB |
| First Published: |
2017-10-11 19:10:19 (6 years ago) |
| Latest Published: |
2024-04-13 23:01:18 (5 months ago) |
| Status: |
Trojan.Downloader (on last analysis) |
|
| Analysis Date: |
2024-04-13 23:01:18 (5 months ago) |
| %desktop%\beloff |
| %sysdrive%\beloff 2017.2 (x86 x64) rus |
| %sysdrive%\новая папка\tc_vim_18 |
| %sysdrive%\компьютер\белофф |
| %sysdrive%\проги\белофф |
| %temp%\rar$exa3836.27241.rartemp |
| %temp%\rar$exa3836.24035.rartemp |
| %temp%\rar$exa3836.6186.rartemp |
| %temp%\rar$exa3836.22609.rartemp |
| A0006635.exe |
| A0004852.exe |
| P.TrashReg.exe |
| TrashReg.exe |
| Windows 7 |
50.0% |
|
| Windows 10 |
44.4% |
|
| Windows 8.1 |
5.6% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000193af |
| Name |
Size of data |
MD5 |
| .text |
101888 |
c624ae421a6c4f702f7f2c2c23c4aef1 |
| .rdata |
16384 |
746f7c2df0aa9b117542dd3e6429f2f1 |
| .data |
2048 |
07f7ba027ce50640e9ee99eddca1959f |
| .rsrc |
17408 |
ee4976600ce20f6303986d427a1d5ed7 |
