How to remove CELib_x86.dll
- File Details
- Overview
- Analysis
CELib_x86.dll
The module CELib_x86.dll has been detected as Trojan.Agent
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
f793acad87f2c1e0cfaef0026fcb06b8 |
| Size: |
1 MB |
| First Published: |
2020-05-12 00:09:08 (3 years ago) |
| Latest Published: |
2020-08-13 11:10:20 (3 years ago) |
| Status: |
Trojan.Agent (on last analysis) |
|
| Analysis Date: |
2020-08-13 11:10:20 (3 years ago) |
Overview
| %localappdata%\wemod\app-6.3.9\resources\app.asar.unpacked\static\unpacked |
| %localappdata%\wemod\app-6.3.10\resources\app.asar.unpacked\static\unpacked |
| %localappdata%\wemod\app-6.3.10\resources\app.asar.unpacked\static\unpacked |
| %localappdata%\wemod\app-6.3.9\resources\app.asar.unpacked\static\unpacked |
| %localappdata%\wemod\app-6.3.9\resources\app.asar.unpacked\static\unpacked |
| %localappdata%\wemod\app-6.3.10\resources\app.asar.unpacked\static\unpacked |
| %localappdata%\wemod\app-6.3.10\resources\app.asar.unpacked\static\unpacked |
| %localappdata%\wemod\app-6.3.8\resources\app.asar.unpacked\static\unpacked |
| %localappdata%\wemod\app-6.3.10\resources\app.asar.unpacked\static\unpacked |
| %localappdata%\wemod\app-6.3.10\resources\app.asar.unpacked\static\unpacked |
|
17.3% |
|
|
9.3% |
|
|
8.0% |
|
|
6.7% |
|
|
5.3% |
|
|
5.3% |
|
|
5.3% |
|
|
4.0% |
|
|
4.0% |
|
|
2.7% |
|
|
2.7% |
|
|
2.7% |
|
|
2.7% |
|
|
2.7% |
|
|
2.7% |
|
|
2.7% |
|
|
2.7% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
| Windows 10 |
96.1% |
|
| Windows 7 |
2.6% |
|
| Windows 8.1 |
1.3% |
|
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x10000000 |
| Entry Address: |
0x0030a058 |
| Name |
Size of data |
MD5 |
| |
123904 |
cc1ebdb758e0886b8c03a4232acd900a |
| |
17408 |
d2cc9503b786b80d111722515068654d |
| |
19456 |
718d92e15c45c7e37b9db5ce2f6a857a |
| |
0 |
00000000000000000000000000000000 |
| |
512 |
ebada125896badb515b0899f70d0b46b |
| |
512 |
9a3f7f2578c4224f605297529c31e7f3 |
| |
512 |
855392d43466f4288ba1049334d77a0d |
| |
512 |
8fabd08b7ff13fd8f1170545b16aa4e4 |
| |
12800 |
95a37e64c75debc2edb981a069c59745 |
| .edata |
512 |
daabc97869cf339b70f74b3ae55857b1 |
| .idata |
512 |
21aa3b00dc5d011e29f03865dc972a4c |
| .rsrc |
1024 |
660d6c1dbbf4170209282c408110804a |
| .wemod |
0 |
00000000000000000000000000000000 |
| .boot |
1724416 |
444ea377a294ededdb1c607476295c8b |
