How to remove D081C579-672A-72D2-AF2D-17B470874149.exe
- File Details
- Overview
- Analysis
D081C579-672A-72D2-AF2D-17B470874149.exe
The module D081C579-672A-72D2-AF2D-17B470874149.exe has been detected as Virus.Ramnit
File Details
| MD5: |
f6fccfba5e4efe0ba613878c9a894d36 |
| Size: |
1 MB |
| First Published: |
2017-05-25 00:00:49 (8 years ago) |
| Latest Published: |
2021-01-13 08:34:02 (4 years ago) |
| Status: |
Virus.Ramnit (on last analysis) |
|
| Analysis Date: |
2021-01-13 08:34:02 (4 years ago) |
| %commonappdata%\{22688f7b-95c3-38d0-0ae0-dcfd74629669} |
| %commonappdata%\{4a1508c5-fdbe-bf6e-fa99-8a96abaa1c64} |
| %commonappdata%\{74741152-c3df-a6f9-03a4-3d3e8c60a81a} |
| %localappdata%\temp |
| %commonappdata%\{e9d537f5-5e7e-805e-6212-94a7ade138b1} |
| %commonappdata%\{efe61a5a-584d-adf1-edee-1bcb9a5acd7e} |
| %commonappdata%\{58df4072-ef74-f7d9-990b-dfca8ad93e30} |
| %windir%\syswow64 |
| %commonappdata%\{2b1068cc-9cbb-df67-4e8d-95bdd99464b3} |
| %commonappdata%\{bcf84b0a-0b53-fca1-b80e-f35597455b7d} |
| 75D55476-C27E-E3DD-3439-B7ACBAAAD3C1.exe |
| D081C579-672A-72D2-AF2D-17B470874149.exe |
| 0383FF54-B428-48FF-C3C4-D301FF561AC4.exe |
| 27878883.t.exe |
| 35276968.t.exe |
| 13257961.t.exe |
| E5D5910C-527E-26A7-D5C0-6284C720EF54.exe |
| 52508959.t.exe |
| 7C58877A-CBF3-30D1-DB70-5B412CEB1634.exe |
| E2B13FEC-551A-8847-63E3-22A1DAC5AC8E.exe |
| E6111A07-51BA-ADAC-9D5D-DE1B3B2720E8.exe |
| BED0E622-097B-5189-8DBF-E8A29514826C.exe |
| 784B7D77-CFE0-CADC-E986-21CCB5A262D5.exe |
| 15359329-A29E-2482-615C-DC18E2ABE1B6.exe |
| 20180350.t.exe |
| 100321797.t.exe |
| F2756DA5-45DE-DA0E-2602-92FEE0363561.exe |
| 38FF9C92-8F54-2B39-7BA6-B6965872A6A5.exe |
| 237E505B-94D5-E7F0-0D91-6E5C0B046AE7.exe |
| CF8CB97E-7827-0ED5-80B8-5DDEC6D71370.exe |
| BDF96211-0A52-D5BA-6B50-A53BDB5EE2B7.exe |
| 7BC945B2-CC62-F219-F046-710499D6F382.exe |
| 162638D6-A18D-8F7D-9FF3-F99E068844C7.exe |
| E502D4A3-52A9-6308-C78B-D71429671973.exe |
| 6305A8D3-D4AE-1F78-316E-CB37E9BF294A.exe |
| DBD40111-6C7F-B6BA-4F99-7959C58322D8.exe |
| 2C4BCB7D-9BE0-7CD6-C04B-85791448873B.exe |
| F0D32795-4778-903E-CC59-D9FE9A626D84.exe |
| 9ADAA049-2D71-17E2-2236-7043D78BF3DF.exe |
| 5117D8EA-E6BC-6F41-7FDC-270BFD375359.exe |
| 63500BC8-D4FB-BC63-B4A3-E5EF887041B6.exe |
| 89363044.t.exe |
| 133461588.t.exe |
| 55101685.t.exe |
| 34186146.t.exe |
| 14570768.t.exe |
|
35.3% |
|
|
21.6% |
|
|
9.8% |
|
|
5.9% |
|
|
5.9% |
|
|
5.9% |
|
|
3.9% |
|
|
3.9% |
|
|
3.9% |
|
|
2.0% |
|
|
2.0% |
|
| Windows 7 |
94.1% |
|
| Windows 8.1 |
2.0% |
|
| Windows 8 |
2.0% |
|
| Windows XP |
2.0% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x105b0000 |
| Entry Address: |
0x0001852b |
| Name |
Size of data |
MD5 |
| .text |
505344 |
0331daac19df02efeb09c15134689366 |
| .rdata |
100864 |
756d79ce6e59e12cc2d5cc4155545fbf |
| .data |
994304 |
380844d36383bc993af6ddf449ed4111 |
| .reloc |
25088 |
206ef4417292816d87ee974bc7d62a17 |
