How to remove E616.VIR
E616.VIR
The module E616.VIR has been detected as Trojan.Kryptik
File Details
| MD5: | ea5f9e5a6230afdf746ca66d73a562fe |
| Size: | 745 KB |
| First Published: | 2020-09-10 03:22:16 (3 years ago) |
| Latest Published: | 2020-11-02 04:21:45 (3 years ago) |
| Status: | Trojan.Kryptik (on last analysis) | |
| Analysis Date: | 2020-11-02 04:21:45 (3 years ago) |
Common Places:
| %localappdata% |
| %localappdata% |
| %localappdata% |
| %localappdata% |
| %sysdrive%\windows.old\users\ronald\appdata\local |
| %localappdata% |
| %sysdrive%\windows.old\users\brau garcĂa\appdata\local |
| %temp% |
| %localappdata% |
| %localappdata% |
Geography:
| 18.4% | ||
| 9.7% | ||
| 4.6% | ||
| 3.6% | ||
| 3.1% | ||
| 3.1% | ||
| 3.1% | ||
| 3.1% | ||
| 2.6% | ||
| 2.6% | ||
| 2.6% | ||
| 2.6% | ||
| 2.6% | ||
| 2.6% | ||
| 2.0% | ||
| 2.0% | ||
| 2.0% | ||
| 2.0% | ||
| 2.0% | ||
| 2.0% | ||
| 1.5% | ||
| 1.5% | ||
| 1.5% | ||
| 1.5% | ||
| 1.5% | ||
| 1.5% | ||
| 1.5% | ||
| 1.5% | ||
| 1.5% | ||
| 1.0% | ||
| 1.0% | ||
| 1.0% | ||
| 1.0% | ||
| 1.0% | ||
| 1.0% | ||
| 0.5% | ||
| 0.5% | ||
| 0.5% | ||
| 0.5% | ||
| 0.5% | ||
| 0.5% | ||
| 0.5% | ||
| 0.5% |
OS Version:
| Windows 10 | 62.5% | |
| Windows 7 | 31.0% | |
| Windows 8.1 | 4.6% | |
| Windows 8 | 1.4% | |
| Windows Embedded 8.1 | 0.5% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x0000682d |
PE Sections:
| Name | Size of data | MD5 |
| .text | 663552 | a83d8eb5299dd387d6c6c59604c40086 |
| .data | 33280 | ded9eb5692df194eaa2fbc2f9374107c |
| .rsrc | 65024 | 3d1705d584e73719df7c8701677fc7ea |
More information:
Download GridinSoft
Anti-Malware - Removal tool for E616.VIR
