How to remove A0456472.exe

» File
File Details
Overview
Analysis

A0456472.exe

The module A0456472.exe has been detected as Adware.Downloader

Remove A0456472.exe

File Details

Main Info:

Product Name:	Citrio
Company Name:	CatalinaGroup Ltd.
MD5:	7d621de23c4aaa933c2cf2a38fd16d87
Size:	1 MB
First Published:	2017-05-25 09:04:19 (6 years ago)
Latest Published:	2018-10-24 13:08:24 (5 years ago)

Analysis:

Status:	Adware.Downloader (on last analysis)
Analysis Date:	2018-10-24 13:08:24 (5 years ago)

Overview

Digital Signature

Signed By:	Catalina Group Limited
Status:	Valid

Common Places:

%localappdata%\catalinagroup\citrio\application

%profile%\ser\local settings\application data\catalinagroup\citrio\application

%sysdrive%\system volume information\_restore{c52b72cc-fd71-4681-b415-f03a3112c2d4}

%sysdrive%\descargas\programas\citrioportable\app

%localappdata%\catalinagroup\citrio\temp\source1384_23042

File Names:

citrio.exe

A0456472.exe

Geography:

	36.4%
	18.2%
	9.1%
	9.1%
	9.1%
	9.1%
	9.1%

OS Version:

Windows 7	64.3%
Windows 10	21.4%
Windows XP	14.3%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0004d0f4

PE Sections:

Name	Size of data	MD5
.text	424960	9f9a2f6b2933feba0a8271756d36cecd
.rdata	139776	cc9c00bcc51b5be2ede2e346124558cb
.data	7168	c64095a09e21549de00986194de01ae7
.tls	512	bf619eac0cdf3f68d496ea9344137e8b
.rsrc	487936	0cc71b36c919d8796721ae89aa59ae7f
.reloc	18432	9eb03e71ac9207f4977b208d620e3449

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for A0456472.exe

copyright for information about A0456472.exe

How to remove A0456472.exe

A0456472.exe

The module A0456472.exe has been detected as Adware.Downloader

File Details

Main Info:

Citrio

CatalinaGroup Ltd.

Analysis:

Overview

Digital Signature

Common Places:

Geography:

OS Version:

Analysis

PE Info:

PE Sections:

More information: