How to remove AutoPico.exe
- File Details
- Overview
- Analysis
AutoPico.exe
The module AutoPico.exe has been detected as Hack.KMS
File Details
| Product Name: |
|
| MD5: |
24942220e0b60b839fe310a421230196 |
| Size: |
341 KB |
| First Published: |
2017-11-29 23:02:21 (7 years ago) |
| Latest Published: |
2022-07-23 23:21:03 (3 years ago) |
| Status: |
Hack.KMS (on last analysis) |
|
| Analysis Date: |
2022-07-23 23:21:03 (3 years ago) |
| %sysdrive%\e\原thop使用硬碟\my documents\微型 kms\kmspico_v7 |
| %sysdrive%\e\仁愛之家做ghost硬碟\han0257 backup\d\my documents\微型 kms\kmspico_v7 |
| %sysdrive%\e\原thop使用硬碟\my documents\微型 kms\kmspico_v7.zip\kmspico_v7 |
| %sysdrive%\dysk_d\###-files\shifter.softarchive.net.mtool.rar\shifter.softarchive.net.mtool\kmspico |
| %programfiles% |
| %sysdrive%\kmspico(最简单的全自动win8office2013一键激活工具) v7.0 绿色版\kmspico(最简单的全自动win8-office2013一键激活工具) v7.0 绿色版_ttrar.rar |
| %sysdrive%\2-1\soft\2013-0613\kmspico v7.zip |
| %sysdrive%\$recycle.bin\s-1-5-21-609738374-3959143848-4153854406-1001\$rsqbhfs.rar\kmspico v7 |
| %programfiles% |
| %sysdrive%\d\downloads 2\kmspico_v7.rar\kmspico v7 |
|
33.3% |
|
|
20.0% |
|
|
13.3% |
|
|
6.7% |
|
|
6.7% |
|
|
6.7% |
|
|
6.7% |
|
|
6.7% |
|
| Windows 10 |
53.3% |
|
| Windows 7 |
26.7% |
|
| Windows 8.1 |
13.3% |
|
| Windows 8 |
6.7% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0005332e |
| MVID: |
7c3cca66-6456-47c8-957e-340243edd0da |
| Typelib ID: |
892d5768-497e-4232-a15c-fa9f29e06a03 |
| Name |
Size of data |
MD5 |
| .text |
332800 |
e1d9ac065751802f4ba57ce9ba7240b3 |
| .sdata |
512 |
fa7d35559c1d5e4a0c2aa76cc2eff23f |
| .rsrc |
14336 |
332c56799c38e079e6be9796dcf4373d |
| .reloc |
512 |
b5ce1766bd6063d5b067344341683167 |
