How to remove DWRCW64.exe
- File Details
- Overview
- Analysis
DWRCW64.exe
The module DWRCW64.exe has been detected as PUP.Keylogger
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
22a3336dd687b021e0214d1e002d2e22 |
| Size: |
54 KB |
| First Published: |
2020-07-04 17:00:30 (4 years ago) |
| Latest Published: |
2021-05-03 20:57:48 (4 years ago) |
| Status: |
PUP.Keylogger (on last analysis) |
|
| Analysis Date: |
2021-05-03 20:57:48 (4 years ago) |
| %programfiles%\dameware development |
| %programfiles%\dameware development |
| %programfiles%\dameware development |
| %programfiles%\dameware development |
| %programfiles%\dameware development |
| %programfiles%\dameware development |
|
33.3% |
|
|
16.7% |
|
|
16.7% |
|
|
16.7% |
|
|
16.7% |
|
| Windows 7 |
50.0% |
|
| Windows 10 |
33.3% |
|
| Windows Server 2012 R2 |
16.7% |
|
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000000400000 |
| Entry Address: |
0x00001b10 |
| Name |
Size of data |
MD5 |
| .text |
32768 |
4c3f071bb0628797b6ac87d4f29849d9 |
| .rdata |
13312 |
e9a2a4604a231219581b155f3f5b16a3 |
| .data |
4608 |
c01896ac0b5c5038d27704388d9cec95 |
| .pdata |
2560 |
26c643156a574be7f5ecda6d1bddf47f |
| .rsrc |
1536 |
b043f0d7ca49c198ccddddab660f60f1 |
