How to remove F168.tmp.exe

» File
File Details
Overview
Analysis

F168.tmp.exe

The module F168.tmp.exe has been detected as Spy.Agent

F168.tmp.exe

Remove F168.tmp.exe

File Details

Main Info:

Product Name:	HastaInter
Company Name:	HastaInter
MD5:	93971b964c672f340824bb9451380ff8
Size:	195 KB
First Published:	2020-12-27 00:11:58 (4 years ago)
Latest Published:	2021-01-05 04:42:04 (4 years ago)

Analysis:

Status:	Spy.Agent (on last analysis)
Analysis Date:	2021-01-05 04:42:04 (4 years ago)

Common Places:

%temp%

%temp%

%temp%

%sysdrive%\$recycle.bin

%temp%

Geography:

Indonesia	50.0%
Hungary	25.0%
Venezuela	25.0%

OS Version:

Windows 10	40.0%
Windows 7	40.0%
Windows Vista	20.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0000cd2f

PE Sections:

Name	Size of data	MD5
.text	104448	724c1fa09ed2621eeee9a52d474667d4
.rdata	28160	5826801f33fc1b607aa8e942aa92e9fa
.data	5632	2fe51a72ede820cd7cf55a77ba59b1f4
.rsrc	60928	6bc9e72dc0441b1159ffb229f07a547e

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for F168.tmp.exe

copyright for information about F168.tmp.exe