How to remove KMSAuto.exe

KMSAuto.exe

The module KMSAuto.exe has been detected as Hack.KMS

KMSAuto.exe
Remove KMSAuto.exe

File Details

MD5: 5d477574a4c2a8dc3f83851007ed767c
Size: 6 MB
First Published: 2017-06-14 07:11:42 (8 years ago)
Latest Published: 2022-11-01 23:06:42 (3 years ago)
Status: Hack.KMS (on last analysis)
Analysis Date: 2022-11-01 23:06:42 (3 years ago)

Overview

Signed By: WZT
Status: Valid

Common Places:

%sysdrive%\windows
%programfiles%\all activation windows (7-8-10)\all activation\kms\kmsauto lite 1.2.7
%appdata%\zhp\quarantine
%profile%\videos\programs\kmsauto lite portable v1.2.7
%desktop%\installed\win adobe master collection cc 2017 update 2017 04 12\adobe recommends this necessary programs\kmsauto lite 1.2.7 portable
%desktop%\активатор\kmsauto lite 1.2.7 portable
%windir%\setup\scripts\activator\kmsauto
%profile%\downloads
%sysdrive%\software\adobe master collection cc 2017 for win 7 8 10 vol. 1\necessary programs
%desktop%\아이콘\김명숙1

Geography:

35.1%
22.1%
6.1%
3.8%
3.1%
3.1%
2.3%
2.3%
2.3%
1.5%
1.5%
1.5%
1.5%
1.5%
1.5%
1.5%
1.5%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%
0.8%

OS Version:

Windows 10 74.8%
Windows 7 19.1%
Windows 8.1 4.6%
Windows XP 1.5%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00001000

PE Sections:

Name Size of data MD5
.code 112128 611d9bb29f16e8fcd834665197c77da6
.text 360448 d95c2c733c90379743fd9e7199399677
.rdata 37888 e6187ad982d9d7967a02a7f08bebbfe5
.data 6249472 f06474e6cfca9b2065a5428479ad8d0d
.rsrc 45568 b3f785ba171ec22c2170ccee957ae413

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for KMSAuto.exe
copyright for information about KMSAuto.exe