How to remove E616.VIR
E616.VIR
The module E616.VIR has been detected as Trojan.Kryptik
File Details
MD5: | ea5f9e5a6230afdf746ca66d73a562fe |
Size: | 745 KB |
First Published: | 2020-09-10 03:22:16 (3 years ago) |
Latest Published: | 2020-11-02 04:21:45 (3 years ago) |
Status: | Trojan.Kryptik (on last analysis) | |
Analysis Date: | 2020-11-02 04:21:45 (3 years ago) |
Common Places:
%localappdata% |
%localappdata% |
%localappdata% |
%localappdata% |
%sysdrive%\windows.old\users\ronald\appdata\local |
%localappdata% |
%sysdrive%\windows.old\users\brau garcĂa\appdata\local |
%temp% |
%localappdata% |
%localappdata% |
Geography:
18.4% | ||
9.7% | ||
4.6% | ||
3.6% | ||
3.1% | ||
3.1% | ||
3.1% | ||
3.1% | ||
2.6% | ||
2.6% | ||
2.6% | ||
2.6% | ||
2.6% | ||
2.6% | ||
2.0% | ||
2.0% | ||
2.0% | ||
2.0% | ||
2.0% | ||
2.0% | ||
1.5% | ||
1.5% | ||
1.5% | ||
1.5% | ||
1.5% | ||
1.5% | ||
1.5% | ||
1.5% | ||
1.5% | ||
1.0% | ||
1.0% | ||
1.0% | ||
1.0% | ||
1.0% | ||
1.0% | ||
0.5% | ||
0.5% | ||
0.5% | ||
0.5% | ||
0.5% | ||
0.5% | ||
0.5% | ||
0.5% |
OS Version:
Windows 10 | 62.5% | |
Windows 7 | 31.0% | |
Windows 8.1 | 4.6% | |
Windows 8 | 1.4% | |
Windows Embedded 8.1 | 0.5% |
Analysis
Subsystem: | Windows GUI |
PE Type: | pe |
OS Bitness: | 32 |
Image Base: | 0x00400000 |
Entry Address: | 0x0000682d |
PE Sections:
Name | Size of data | MD5 |
.text | 663552 | a83d8eb5299dd387d6c6c59604c40086 |
.data | 33280 | ded9eb5692df194eaa2fbc2f9374107c |
.rsrc | 65024 | 3d1705d584e73719df7c8701677fc7ea |
More information:
Download GridinSoft
Anti-Malware - Removal tool for E616.VIR