How to remove KMSTools.exe

KMSTools.exe

The module KMSTools.exe has been detected as Crack.KMS

KMSTools.exe
Remove KMSTools.exe

File Details

Product Name:

KMS Tools Portable x86
Company Name:

Ratiborus
MD5: 1a038befd97b68a5b65b632d104f51e9
Size: 50 MB
First Published: 2020-05-01 20:13:38 (5 years ago)
Latest Published: 2025-08-12 23:01:10 (3 months ago)
Status: Crack.KMS (on last analysis)
Analysis Date: 2025-08-12 23:01:10 (3 months ago)

Overview

Signed By: WZTeam
Status: Invalid (digital signature could be stolen or file could be patched)

Common Places:

%profile%\downloads\compressed
%profile%\onedrive\desktop
%profile%\downloads\kms_tools_portable_01.05.2020\kms_tools_portable_01.05.2020_password_2020
%profile%\downloads\kms_tools_portable_01.05.2020\kms_tools_portable_01.05.2020_password_2020
%desktop%\ratiborus_kms_tools_01.05.2020_downloadly.ir
%desktop%\folder
%profile%\downloads\compressed\kmstools.oneindir.com
%profile%\downloads\compressed
%profile%\downloads\compressed
%desktop%\kms tool

Geography:

8.6%
8.6%
7.6%
6.7%
5.7%
4.8%
4.8%
4.8%
3.8%
3.8%
3.8%
3.8%
2.9%
2.9%
1.9%
1.9%
1.9%
1.9%
1.9%
1.9%
1.9%
1.9%
1.9%
1.0%
1.0%
1.0%
1.0%
1.0%
1.0%
1.0%
1.0%
1.0%
1.0%
1.0%

OS Version:

Windows 10 90.7%
Windows 8.1 7.4%
Windows 7 1.9%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00001000

PE Sections:

Name Size of data MD5
.code 61952 13169a862cbaeff25c8fe6b6c775d635
.text 684544 d318b3c55d0093b2dd401898649711c1
.rdata 152064 f45e69d71804202795d7efd896c71e8b
.data 51897856 20b8a3912f11b6a986037b7d392af2a9
.rsrc 107520 6b63d1ad078a0dfd014a5caf84ac8e6d

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for KMSTools.exe
copyright for information about KMSTools.exe