How to remove MPGPH1.exe
MPGPH1.exe
The module MPGPH1.exe has been detected as Trojan.Downloader
File Details
| MD5: | 6258fa3a9b9ead8f2dc4f784f68f8128 |
| Size: | 3 MB |
| First Published: | 2023-12-31 23:11:11 (a year ago) |
| Latest Published: | 2024-10-17 23:00:53 (8 months ago) |
| Status: | Trojan.Downloader (on last analysis) | |
| Analysis Date: | 2024-10-17 23:00:53 (8 months ago) |
Overview
| Signed By: | ActiveReports RDF document API |
| Status: | Valid |
Common Places:
| %commonappdata% |
| %commonappdata% |
| %localappdata% |
| %commonappdata% |
| %commonappdata% |
| %localappdata% |
| %commonappdata% |
| %localappdata% |
| %commonappdata% |
| %localappdata% |
Geography:
| 30.0% | ||
| 20.0% | ||
| 20.0% | ||
| 15.0% | ||
| 5.0% | ||
| 5.0% | ||
| 5.0% |
OS Version:
| Windows 10 | 85.0% | |
| Windows 8.1 | 10.0% | |
| Windows 7 | 5.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x0048c2f5 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .rdata | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .data | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .vmp{~Â | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .vmp{~Â | 1536 | 1b5ea4c4ec074937d57e4401254943b4 |
| .vmp{~Â | 3084800 | d741cbbd4880278e8cac65a99c3c7746 |
| .reloc | 7168 | 018e8204abe304d369bfba5bfeaadf4f |
| .rsrc | 153600 | 2102618195c8b0de625810578f635476 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for MPGPH1.exe
