How to remove A0478384.exe
- File Details
- Overview
- Analysis
A0478384.exe
The module A0478384.exe has been detected as PUP.OpenCandy
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
21244c704d687274d5ef83f57b2abbcc |
| Size: |
423 KB |
| First Published: |
2017-07-17 22:08:42 (7 years ago) |
| Latest Published: |
2024-05-20 23:02:28 (7 months ago) |
| Status: |
PUP.OpenCandy (on last analysis) |
|
| Analysis Date: |
2024-05-20 23:02:28 (7 months ago) |
Overview
| %appdata%\opencandy\ec659cb536f148eaa70cefb57743a04f |
| %appdata%\opencandy\4038c72e7f1a43679ec233cec414816e |
| %appdata%\opencandy\6e2df0adb955417e8c20ee8e6977d9b8 |
| %appdata%\opencandy\0abaf97ea4304bde91bf8a7de82a3452 |
| %appdata%\opencandy\a73b41cd0f014210b479f3c6e7f91e57 |
| %appdata%\opencandy |
| %profile%\adislav\data aplikací\opencandy |
| %sysdrive%\system volume information\_restore{c52b72cc-fd71-4681-b415-f03a3112c2d4} |
| %sysdrive%\windows.old\users\daniel\appdata\roaming\opencandy |
| %sysdrive%\0 escritorio real\copia de dell empresa\users\dell\desktop\csl\c\users\montse\appdata\roaming\opencandy |
| OCBrowserHelper_1.0.6.124.exe |
| A0478384.exe |
|
18.8% |
|
|
15.6% |
|
|
12.5% |
|
|
9.4% |
|
|
6.3% |
|
|
6.3% |
|
|
3.1% |
|
|
3.1% |
|
|
3.1% |
|
|
3.1% |
|
|
3.1% |
|
|
3.1% |
|
|
3.1% |
|
|
3.1% |
|
|
3.1% |
|
|
3.1% |
|
| Windows 10 |
43.8% |
|
| Windows 7 |
25.0% |
|
| Windows XP |
18.8% |
|
| Windows Vista |
9.4% |
|
| Windows 8.1 |
3.1% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000f47e0 |
| Name |
Size of data |
MD5 |
| UPX0 |
0 |
00000000000000000000000000000000 |
| UPX1 |
402432 |
d5fc2c68690d304f7d9f1b35eb8528f7 |
| .rsrc |
23552 |
353e3e6603edb9ac2aee88043c10d685 |
