How to remove KMSAuto Lite v1.2.9.exe

KMSAuto Lite v1.2.9.exe

The module KMSAuto Lite v1.2.9.exe has been detected as Hack.KMS

KMSAuto Lite v1.2.9.exe
Remove KMSAuto Lite v1.2.9.

File Details

MD5: 403c3ee2d8bc147e200493b973358fc7
Size: 6 MB
First Published: 2017-05-22 05:04:11 (8 years ago)
Latest Published: 2025-01-03 23:02:09 (10 months ago)
Status: Hack.KMS (on last analysis)
Analysis Date: 2025-01-03 23:02:09 (10 months ago)

Overview

Signed By: WZT
Status: Valid

Common Places:

%sysdrive%\windows
%profile%\downloads\kmsauto lite portable v1.2.9
%sysdrive%\activators\kmsauto lite portable v1.2.9
%sysdrive%\games\яс\sources\$oem$\$1\activators\kmsauto lite portable v1.2.9
%windir%\system usb-flash 10\активаторы\kmsauto
%sysdrive%\activators\kmsautolite
%windir%\system usb-flash 10\activators\kmsauto
%desktop%\активатор\kmsauto lite portable v1.2.9
%temp%\vmware-as\vmwarednd\8281d6d6\kmsauto lite portable v1.2.9
%temp%\_ts168.tmp\_ts1c.tmp\kmsauto lite portable v1.2.9

File Names:

KMSAuto.exe
KMSAuto Lite v1.2.9.exe
kmsauto.exe
$RBQ6YMJ.exe

Geography:

50.7%
23.9%
6.8%
2.0%
2.0%
1.8%
1.1%
1.1%
0.9%
0.9%
0.7%
0.7%
0.7%
0.7%
0.7%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%

OS Version:

Windows 10 57.8%
Windows 7 31.6%
Windows 8.1 7.4%
Windows XP 1.1%
Windows Embedded 8.1 1.1%
Windows 8 0.6%
Windows Server 2003 0.4%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00001000

PE Sections:

Name Size of data MD5
.code 114688 a3617fdb80ffbd3c75499a320b2b9632
.text 360448 b64b948eb8b35430a7b8a076722e635a
.rdata 37888 e6187ad982d9d7967a02a7f08bebbfe5
.data 5972480 7c9ecc0e5e66cc748883dc899a6e277c
.rsrc 45568 1b17bc1f004b8990436b1ac8f23b938f

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for KMSAuto Lite v1.2.9.exe
copyright for information about KMSAuto Lite v1.2.9.exe