How to remove NirCmdC.cfxxe
- File Details
- Overview
- Analysis
NirCmdC.cfxxe
The module NirCmdC.cfxxe has been detected as General Threat
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
3cbb025b926b87902aecbd6570bac89d |
| Size: |
30 KB |
| First Published: |
2017-05-29 14:04:57 (7 years ago) |
| Latest Published: |
2021-03-24 21:57:37 (3 years ago) |
| Status: |
General Threat (on last analysis) |
|
| Analysis Date: |
2021-03-24 21:57:37 (3 years ago) |
| %sysdrive%\zoek\in\usertemp |
| %localappdata%\temp |
| %sysdrive%\system volume information\systemrestore\frstaging\users\yedek\appdata\local\temp |
| %sysdrive%\vtroot\harddiskvolume2\users\patrick\appdata\local\temp |
| %temp% |
| %windir% |
| %desktop%\filial\appdata\local |
| %sysdrive%\windows.old\users\evera\appdata\local |
| %sysdrive% |
| %temp% |
| NirCmd.exe |
| NirCmdC.cfxxe |
| NirCmd(1542).exe |
| nircmdc.exe |
|
75.9% |
|
|
7.2% |
|
|
2.4% |
|
|
2.4% |
|
|
2.4% |
|
|
2.4% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
| Windows 10 |
49.4% |
|
| Windows 7 |
42.2% |
|
| Windows 8.1 |
6.0% |
|
| Windows 8 |
1.2% |
|
| Windows Vista |
1.2% |
|
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000128d0 |
| Name |
Size of data |
MD5 |
| UPX0 |
0 |
00000000000000000000000000000000 |
| UPX1 |
27648 |
173dfbf69964091be5cf2aaf5f7d4800 |
| .rsrc |
2048 |
32d0e12c0228e0deb43a852602ee0bd3 |
