How to remove A0496777.exe
- File Details
- Overview
- Analysis
A0496777.exe
The module A0496777.exe has been detected as Adware.Komodia
File Details
| Product Name: |
|
| MD5: |
61ab175718ef5e9f69f163b16c8ffda3 |
| Size: |
12 MB |
| First Published: |
2017-05-22 10:24:38 (7 years ago) |
| Latest Published: |
2020-02-18 00:00:43 (4 years ago) |
| Status: |
Adware.Komodia (on last analysis) |
|
| Analysis Date: |
2020-02-18 00:00:43 (4 years ago) |
Overview
| %allusersprofile%\\application data\comodo downloader\cis\download\installs\xml_binaries\privdog |
| %sysdrive%\system volume information\_restore{51586d55-7083-4b62-8ed1-774b151a0923}\rp3393 |
| %sysdrive%\$recycle.bin\s-1-5-21-3183468921-1676036559-3566205320-1004 |
| %allusersprofile%\\application data\comodo downloader\cis\download\installs\3000\xml_binaries\privdog |
| %commonappdata%\comodo downloader\cis\download\installs\xml_binaries\privdog |
| %commonappdata%\comodo downloader\cis\download\installs\3000\xml_binaries\privdog |
| %allusersprofile%\\dane aplikacji\comodo downloader\cis\download\installs\xml_binaries\privdog |
| %commonappdata%\comodo downloader\cis\download\installs\xml_binaries |
| %commonappdata%\comodo downloader\cis\download\installs\3000\xml_binaries |
| %allusersprofile%\\application data\comodo downloader\cis\download\installs\xml_binaries |
| privdog.exe |
| A0496777.exe |
| $RJXUCLJ.exe |
| A0152764.exe |
|
25.0% |
|
|
18.8% |
|
|
10.4% |
|
|
8.3% |
|
|
8.3% |
|
|
4.2% |
|
|
4.2% |
|
|
4.2% |
|
|
2.1% |
|
|
2.1% |
|
|
2.1% |
|
|
2.1% |
|
|
2.1% |
|
|
2.1% |
|
|
2.1% |
|
|
2.1% |
|
| Windows 7 |
39.6% |
|
| Windows 10 |
27.1% |
|
| Windows XP |
25.0% |
|
| Windows 8.1 |
4.2% |
|
| Windows 8 |
2.1% |
|
| Windows Vista |
2.1% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000030fa |
| Name |
Size of data |
MD5 |
| .text |
24064 |
856b32eb77dfd6fb67f21d6543272da5 |
| .rdata |
5120 |
dc77f8a1e6985a4361c55642680ddb4f |
| .data |
1024 |
7922d4ce117d7d5b3ac2cffe4b0b5e4f |
| .ndata |
0 |
00000000000000000000000000000000 |
| .rsrc |
104960 |
7ce65540f0a7212cebfa3c2471db73fe |
