How to remove IncMail.exe
- File Details
- Overview
- Analysis
IncMail.exe
The module IncMail.exe has been detected as Hijack.Explorer
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
fc3782f90c014c2d3c920a727d323776 |
| Size: |
358 KB |
| First Published: |
2017-06-11 09:02:53 (6 years ago) |
| Latest Published: |
2021-07-06 20:45:00 (2 years ago) |
| Status: |
Hijack.Explorer (on last analysis) |
|
| Analysis Date: |
2021-07-06 20:45:00 (2 years ago) |
Overview
| Signed By: |
Perion Network Ltd. |
| Status: |
Invalid (digital signature could be stolen or file could be patched) |
| %programfiles%\incredimail\bin |
| %programfiles%\incredimail |
| %programfiles%\incredimail |
| %programfiles%\incredimail |
| %programfiles%\incredimail |
| %programfiles%\incredimail |
| %programfiles%\incredimail |
| %programfiles%\incredimail |
| %programfiles%\incredimail |
|
82.4% |
|
|
5.9% |
|
|
2.9% |
|
|
2.9% |
|
|
2.9% |
|
|
1.5% |
|
|
1.5% |
|
| Windows 7 |
76.5% |
|
| Windows 10 |
23.5% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000209d8 |
| Name |
Size of data |
MD5 |
| .text |
155648 |
df090f721be794bb74e2fa170799b987 |
| .rdata |
106496 |
5888eef78533501485e72ba4d62c2836 |
| .data |
8192 |
f36a001f519407e06ed4aa1a910714e0 |
| .shared |
4096 |
620f0b67a91f7f74151bc5be745b7110 |
| .rsrc |
61440 |
238d51b78962c894544cdc4a02216b5d |
| .reloc |
20480 |
a880fd54c9cd408a03a4dddcceb8ddd2 |
