How to remove Newra.exe
Newra.exe
The module Newra.exe has been detected as Trojan.Gen
File Details
Product Name: | 易语言程序 |
MD5: | b7fa085cfb56eb0692c9241769705702 |
Size: | 1 MB |
First Published: | 2018-01-22 19:14:46 (6 years ago) |
Latest Published: | 2018-02-02 02:05:30 (6 years ago) |
Status: | Trojan.Gen (on last analysis) | |
Analysis Date: | 2018-02-02 02:05:30 (6 years ago) |
Common Places:
%system%\config\systemprofile\appdata\local\microsoft\windows\inetcache |
%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\content.ie5 |
%windir% |
%system%\config\systemprofile\appdata\local\microsoft\windows\temporary internet files |
File Names:
xm[1].exe |
Newra.exe |
xm[3].exe |
xm[2].exe |
Geography:
90.5% | ||
4.8% | ||
4.8% |
OS Version:
Windows Server 2008 R2 | 95.2% | |
Windows Server 2012 R2 | 4.8% |
Analysis
Subsystem: | Windows GUI |
PE Type: | pe |
OS Bitness: | 32 |
Image Base: | 0x00400000 |
Entry Address: | 0x0036cb70 |
PE Sections:
Name | Size of data | MD5 |
UPX0 | 0 | 00000000000000000000000000000000 |
UPX1 | 1285632 | 5a1c865ec5297337a506f44e5b051a08 |
.rsrc | 7680 | 0ae778d525e1f0eca05b235acd19893d |
More information:
Download GridinSoft
Anti-Malware - Removal tool for Newra.exe