How to remove AA_v3 (1).exe
- File Details
- Overview
- Analysis
AA_v3 (1).exe
The module AA_v3 (1).exe has been detected as Risk.RemoteAdmin
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
390ddaff20160396e7490b239b4cad9b |
| Size: |
782 KB |
| First Published: |
2020-03-23 10:05:27 (4 years ago) |
| Latest Published: |
2022-05-16 23:08:18 (2 years ago) |
| Status: |
Risk.RemoteAdmin (on last analysis) |
|
| Analysis Date: |
2022-05-16 23:08:18 (2 years ago) |
Overview
| %localappdata%\microsoft\windows\temporary internet files\content.ie5 |
| %localappdata%\microsoft\windows\temporary internet files\low\content.ie5 |
| %sysdrive% |
| %sysdrive% |
| %profile% |
| %localappdata%\packages\microsoft.microsoftedge_8wekyb3d8bbwe\tempstate |
| %localappdata%\packages\microsoft.microsoftedge_8wekyb3d8bbwe\tempstate |
| %profile% |
| %localappdata%\packages\microsoft.microsoftedge_8wekyb3d8bbwe\ac\#!001\microsoftedge\cache |
| %desktop% |
|
70.3% |
|
|
6.6% |
|
|
5.5% |
|
|
3.3% |
|
|
3.3% |
|
|
2.2% |
|
|
2.2% |
|
|
1.1% |
|
|
1.1% |
|
|
1.1% |
|
|
1.1% |
|
|
1.1% |
|
|
1.1% |
|
| Windows 10 |
58.8% |
|
| Windows 7 |
29.9% |
|
| Windows 8.1 |
6.2% |
|
| Windows Server 2008 R2 |
4.1% |
|
| Windows Server 2016 |
1.0% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00080dc8 |
| Name |
Size of data |
MD5 |
| .text |
557056 |
93ad55f505e0a74dcd68b7d5dbf86218 |
| .rdata |
106496 |
11cb44a391a5a990c4c881cfa5a3cb2a |
| .data |
81920 |
0d66141168e17f4a47a82f764805b966 |
| .rsrc |
45056 |
2ff37c4dfb41e162965966c2dd39eeb5 |
