How to remove EfqpX.sys
EfqpX.sys
The module EfqpX.sys has been detected as Worm.Boychi
File Details
| MD5: | b84325847f036fe6c87b858a9bea00d7 |
| Size: | 3 MB |
| First Published: | 2020-05-08 17:46:53 (4 years ago) |
| Latest Published: | 2020-05-09 11:33:36 (4 years ago) |
| Status: | Worm.Boychi (on last analysis) | |
| Analysis Date: | 2020-05-09 11:33:36 (4 years ago) |
Overview
| Signed By: | HT Srl |
| Status: | Valid |
Common Places:
| %system% |
| %system% |
| %system% |
| %system% |
| %system% |
| %system% |
| %system% |
| %system% |
| %system% |
| %system% |
Geography:
| 100.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Native |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x0051d890 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 0 | 00000000000000000000000000000000 |
| .rdata | 0 | 00000000000000000000000000000000 |
| .data | 0 | 00000000000000000000000000000000 |
| .pdata | 0 | 00000000000000000000000000000000 |
| INIT | 0 | 00000000000000000000000000000000 |
| .vmp0 | 0 | 00000000000000000000000000000000 |
| .vmp1 | 512 | 387d3cec6641bcedbf49389f4d198e83 |
| .vmp2 | 4048896 | 6379788dafb317bdf22e8ab196aa1889 |
| .reloc | 512 | 7cc601fcfe1975383d999ef5c1744bd3 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for EfqpX.sys
