Information about A0406170.exe
- File Details
- Overview
- Analysis
A0406170.exe
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
09eca65234f8fa64e84cd37c7b3a3f72 |
| Size: |
19 KB |
| First Published: |
2017-05-29 16:05:49 (6 years ago) |
| Latest Published: |
2021-12-13 21:31:11 (2 years ago) |
| Status: |
Undefined (on last analysis) |
|
| Analysis Date: |
2021-12-13 21:31:11 (2 years ago) |
Overview
| %windir%\system32 |
| %system% |
| %sysdrive%\system volume information\_restore{c52b72cc-fd71-4681-b415-f03a3112c2d4} |
| %sysdrive%\adwcleaner\quarantine |
| %sysdrive%\windows.old.000\windows |
| %sysdrive%\windows.old\users\n\desktop\drweb.scanner-12.1-280517\dr.web_scanner_by_ha3apet-v12.1\drweb |
| %sysdrive%\qoobox\quarantine\c\windows |
| %system% |
| %system% |
| %system% |
| roboot.exe |
| A0406170.exe |
| A0477287.exe |
| roboot.exe.vir |
|
14.9% |
|
|
14.2% |
|
|
9.0% |
|
|
6.7% |
|
|
6.0% |
|
|
5.2% |
|
|
4.5% |
|
|
3.0% |
|
|
2.2% |
|
|
2.2% |
|
|
2.2% |
|
|
2.2% |
|
|
2.2% |
|
|
2.2% |
|
|
2.2% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
1.5% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
| Windows 7 |
63.8% |
|
| Windows 10 |
15.2% |
|
| Windows XP |
13.0% |
|
| Windows 8.1 |
5.8% |
|
| Windows Vista |
2.2% |
|
Analysis
| Subsystem: |
Native |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x01000000 |
| Entry Address: |
0x000025cc |
| Name |
Size of data |
MD5 |
| .text |
8192 |
3027e59d3363a42cf50fa5d5adb1506c |
| .data |
512 |
563629f165a1b00ba1c92b2b4adf94bb |
| .rsrc |
1536 |
5bb536ef96ac2f91bdca2ce9f55669b1 |
| .reloc |
512 |
566b86644ae89155dec3885f9237cbd4 |
