How to remove A0006855.exe

» File
File Details
Overview
Analysis

A0006855.exe

The module A0006855.exe has been detected as PUP.DriverToolkit

Remove A0006855.exe

File Details

Main Info:

Product Name:	Driver Package Installer (DPInst)
Company Name:	Microsoft Corporation
MD5:	978c25b404d3a31612efbb01c1e981d8
Size:	900 KB
First Published:	2017-05-21 15:03:37 (8 years ago)
Latest Published:	2023-01-06 23:41:53 (2 years ago)

Analysis:

Status:	PUP.DriverToolkit (on last analysis)
Analysis Date:	2023-01-06 23:41:53 (2 years ago)

Overview

Digital Signature

Signed By:	Megaify Software Co.,Ltd.
Status:	Valid

Common Places:

%programfiles%\drivertoolkit

%sysdrive%\system volume information\_restore{ac9dde38-bca3-4eab-8bf6-d625224cf9d9}\rp16

%sysdrive%\system volume information\_restore{ccbe18a5-b19c-4fb7-84a5-aaea3415f8c4}\rp6

%sysdrive%\system volume information\_restore{d09f9a31-5302-4944-a394-79a700035250}\rp182

%sysdrive%\system volume information\_restore{d14d94e3-5831-4be9-835a-9a8e318a8939}\rp32

%sysdrive%\system volume information\_restore{cb690f5c-b055-4432-b402-4385be4f7b10}\rp13

%sysdrive%\$recycle.bin\s-1-5-21-844230419-852404347-2296254423-1001

%appdata%\genie9\zoolz\jobs\{6e820f39-1f0f-4c22-a9f6-5e7cae6f6fa7}\data\backupcache

%sysdrive%\desktop\drivertoolkit

%sysdrive%\system volume information\_restore{b71a8adb-2920-41ef-b4af-735fed1a133e}\rp17

File Names:

DPInst32.exe

A0006855.exe

A0005463.exe

A0076514.exe

A0005505.exe

A0003186.exe

$R58YSOX.exe

888755568403397750.exe

A0005099.exe

A0043034.exe

A0068010.exe

A0055399.exe

A0112659.exe

A0072901.exe

A0072231.exe

A0119078.exe

A0116048.exe

Geography:

Vietnam	8.2%
Brazil	6.4%
Russia	6.0%
Turkey	5.2%
Indonesia	5.0%
Iran	4.6%
Thailand	4.2%
Ukraine	4.0%
India	3.7%
Poland	3.6%
United States	3.5%
Egypt	2.8%
France	2.4%
Italy	2.2%
Germany	1.9%
Switzerland	1.7%
Philippines	1.7%
Netherlands	1.5%
Taiwan	1.5%
Spain	1.4%
Morocco	1.4%
Japan	1.3%
Hungary	1.2%
Mexico	1.2%
Czech Republic	1.1%
United Kingdom	1.0%
Algeria	0.9%
Portugal	0.8%
Pakistan	0.7%
Bulgaria	0.7%
Romania	0.7%
South Korea	0.7%
Saudi Arabia	0.7%
Canada	0.6%
South Africa	0.6%
Greece	0.6%
Malaysia	0.6%
Tunisia	0.6%
Israel	0.6%
Bangladesh	0.6%
Iraq	0.6%
Slovakia	0.6%
Chile	0.6%
Lithuania	0.5%
Argentina	0.5%
Croatia	0.5%
China	0.5%
United Arab Emirates	0.5%
Panama	0.5%
Peru	0.4%
Denmark	0.4%
Finland	0.4%
Australia	0.4%
Qatar	0.4%
Nigeria	0.4%
Kuwait	0.3%
Hong Kong	0.3%
Venezuela	0.3%
Luxembourg	0.3%
Kenya	0.3%
Bolivia	0.3%
Singapore	0.3%
Jordan	0.3%
Sri Lanka	0.2%
Nepal	0.2%
Libya	0.2%
Sweden	0.2%
Mauritius	0.2%
Colombia	0.2%
Dominican Republic	0.2%
Austria	0.2%
Yemen	0.1%
Belarus	0.1%
Slovenia	0.1%
Serbia	0.1%
Palestine	0.1%
Macau	0.1%
Belgium	0.1%
Georgia	0.1%
Cuba	0.1%
New Zealand	0.1%
Ethiopia	0.1%
Azerbaijan	0.1%
Latvia	0.1%
Tanzania	0.1%
Lebanon	0.1%
Uruguay	0.1%

OS Version:

Windows 10	47.8%
Windows 7	37.5%
Windows 8.1	9.1%
Windows XP	3.4%
Windows 8	0.9%
Windows Vista	0.6%
Windows Server 2016	0.5%
Windows Embedded Standard	0.2%
Windows Server 2008 R2	0.1%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x01000000
Entry Address:	0x0002116a

PE Sections:

Name	Size of data	MD5
.text	401408	25c07ee254c1352fd2144e2ee631429a
.data	6144	933edbe2ee0a4325f62952ca3f039d26
.rsrc	482816	ae3d98ccb02c2b4e1b00c49d41a9b9e2
.reloc	24576	8641f863a63c7a1728b4cd1854104597

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for A0006855.exe

copyright for information about A0006855.exe

How to remove A0006855.exe

A0006855.exe

The module A0006855.exe has been detected as PUP.DriverToolkit

File Details

Main Info:

Driver Package Installer (DPInst)

Microsoft Corporation

Analysis:

Overview

Digital Signature

Common Places:

Geography:

OS Version:

Analysis

PE Info:

PE Sections:

More information: