How to remove A0304694.dll
- File Details
- Overview
- Analysis
A0304694.dll
The module A0304694.dll has been detected as Trojan.Agent
File Details
| Product Name: |
|
| MD5: |
e4ad4df4e41240587b4fe8bbcb32db15 |
| Size: |
59 KB |
| First Published: |
2017-07-18 23:06:47 (8 years ago) |
| Latest Published: |
2025-05-31 23:03:06 (3 months ago) |
| Status: |
Trojan.Agent (on last analysis) |
|
| Analysis Date: |
2025-05-31 23:03:06 (3 months ago) |
| %appdata%\ltdltd61\ea |
| %sysdrive%\windows.old\users\toshiba\appdata\local\temp\2510001 |
| %sysdrive%\windows.old\users\toshiba\appdata\local\temp\312898 |
| %sysdrive%\windows.old\users\toshiba\appdata\local\temp\305576 |
| %temp%\1317829 |
| %profile%\ocalservice\local settings\temp\1229191031 |
| %profile%\ocalservice\local settings\temp\1150596088 |
| %profile%\ocalservice\local settings\temp\1266698628 |
| %profile%\ocalservice\local settings\temp\1195433385 |
| %profile%\ocalservice\local settings\temp\1270453080 |
| Vietnam |
37.9% |
|
| Russia |
11.6% |
|
| Thailand |
9.8% |
|
| Indonesia |
8.4% |
|
| China |
4.3% |
|
| Ukraine |
3.6% |
|
| Iran |
2.5% |
|
| Taiwan |
2.4% |
|
| Pakistan |
1.8% |
|
| Turkey |
1.5% |
|
| Philippines |
1.5% |
|
| Romania |
1.5% |
|
| Algeria |
1.3% |
|
| India |
1.0% |
|
| Brazil |
0.9% |
|
| Japan |
0.7% |
|
| United States |
0.6% |
|
| Belarus |
0.6% |
|
| Kazakhstan |
0.5% |
|
| Malaysia |
0.5% |
|
| South Korea |
0.4% |
|
| Tunisia |
0.4% |
|
| Egypt |
0.3% |
|
| Colombia |
0.3% |
|
| Bosnia and Herzegovina |
0.3% |
|
| Hong Kong |
0.3% |
|
| Mongolia |
0.3% |
|
| Myanmar |
0.3% |
|
| Venezuela |
0.2% |
|
| France |
0.2% |
|
| Saudi Arabia |
0.2% |
|
| Honduras |
0.2% |
|
| Bangladesh |
0.2% |
|
| Mexico |
0.2% |
|
| Panama |
0.2% |
|
| Moldova |
0.2% |
|
| Argentina |
0.2% |
|
| Uzbekistan |
0.2% |
|
| Israel |
0.1% |
|
| Jordan |
0.1% |
|
| Lithuania |
0.1% |
|
| Singapore |
0.1% |
|
| Kyrgyzstan |
0.1% |
|
| Palestine |
0.1% |
|
| Macau |
0.1% |
|
| Former Yugoslav Republic of Macedonia |
0.1% |
|
| Slovenia |
0.1% |
|
| United Kingdom |
0.1% |
|
| South Africa |
0.1% |
|
| Ecuador |
0.1% |
|
| Ireland |
0.1% |
|
| Nigeria |
0.1% |
|
| Syria |
0.1% |
|
| Windows 7 |
84.4% |
|
| Windows 10 |
8.4% |
|
| Windows Server 2008 R2 |
3.0% |
|
| Windows XP |
2.0% |
|
| Windows 8.1 |
1.0% |
|
| Windows Server 2012 R2 |
0.6% |
|
| Windows Vista |
0.3% |
|
| Windows Server 2003 |
0.2% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x5a4c0000 |
| Entry Address: |
0x000097d8 |
| Name |
Size of data |
MD5 |
| .text |
35840 |
113dc6476e76ca38d7be8229aa936b03 |
| .rdata |
19456 |
4b1fec550e214a08f8d0a58ed8496eed |
| .data |
1024 |
ec01a8ebee5324b7a8e74353d0b62fc8 |
| .rsrc |
1024 |
b1329fb28644bf3072f762ac460ff28a |
| .reloc |
2048 |
6c6749ad4f36efe68a0e0375d0ecc20e |
