How to remove LSASecretsView.exe

LSASecretsView.exe

The module LSASecretsView.exe has been detected as Virtool.Gen

LSASecretsView.exe
Remove LSASecretsView.exe

File Details

Product Name:

LSASecretsView
Company Name:

NirSoft
MD5: 0ce35200497fe26091d73043e33b3954
Size: 35 KB
First Published: 2017-06-06 14:07:30 (6 years ago)
Latest Published: 2021-02-26 04:05:21 (3 years ago)
Status: Virtool.Gen (on last analysis)
Analysis Date: 2021-02-26 04:05:21 (3 years ago)

Common Places:

%profile%\downloads\outils informatique\gegeek toolkit\nirlauncher\nirsoft
%sysdrive%\program files local\_utilities\nirsoft_package_1.19.66\nirsoft
%sysdrive%\tcpu68\programmplus\system\windowssystemcontrolcenter\app\wscc\nirsoft
%sysdrive%\soft\nirlauncher\nirlauncher package 1.18.40 portable\nirsoft
%desktop%\flash_2gb\nirlauncher package 1.18.40 portable\nirsoft
%profile%\downloads\각종툴\nirsoft_package_1.19.85\nirsoft
%sysdrive%\new folder (3)\300 برنامج\gegeek_toolkit\gegeek toolkit\nirlauncher
%sysdrive%\programas\utilidades\herramientas varias\nirsoft package\nirsoft_package_1.19.91.zip
%programs%\nir soft
%sysdrive%\праграмы\tc image\utilities\systems\nirlauncher

File Names:

lsasecretsview.exe
LSASecretsView.exe
$R9JJNG6.exe
A0014215.exe

Geography:

16.7%
8.3%
8.3%
8.3%
7.7%
6.5%
6.0%
5.4%
4.8%
3.0%
2.4%
1.8%
1.8%
1.2%
1.2%
1.2%
1.2%
1.2%
1.2%
1.2%
1.2%
1.2%
1.2%
1.2%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%

OS Version:

Windows 10 63.2%
Windows 7 28.7%
Windows 8.1 6.9%
Windows XP 0.6%
Windows 8 0.6%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00014330

PE Sections:

Name Size of data MD5
UPX0 0 00000000000000000000000000000000
UPX1 30208 edeb0b59acc4309260d433a1753c6426
.rsrc 5120 e17e579a6c22a9ce5b3faebcbf497d8e

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for LSASecretsView.exe
copyright for information about LSASecretsView.exe