How to remove NmGQo304jDUpG_TcQiXtdXhx.exe

» File
File Details
Overview
Analysis

NmGQo304jDUpG_TcQiXtdXhx.exe

The module NmGQo304jDUpG_TcQiXtdXhx.exe has been detected as Suspicious Object

NmGQo304jDUpG_TcQiXtdXhx.exe

Remove NmGQo304jDUpG_TcQiXt

File Details

Main Info:

Product Name:	WinZipStub
Company Name:	WinZip Computing
MD5:	17687f01ca5191c5e9dd733b30248ea2
Size:	2 MB
First Published:	2024-05-20 23:02:13 (a year ago)
Latest Published:	2024-07-13 23:02:05 (a year ago)

Analysis:

Status:	Suspicious Object (on last analysis)
Analysis Date:	2024-07-13 23:02:05 (a year ago)

Overview

Digital Signature

Signed By:	COREL CORPORATION
Status:	Valid

Common Places:

%mydoc%

%localappdata%

Geography:

	50.0%
	50.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0018ac66

PE Sections:

Name	Size of data	MD5
.text	2104320	9a7a53255c701c47dd612f093193756d
.rdata	458240	d9d44f9150ddc7d09e0d36488a9c7e8e
.data	34304	97f68feca4dbe9b2de9441d1c55b4070
.data_1	512	0c491d35aa5b37101208b14ca5f518af
.rsrc	21504	df7fd6f1ef1eba2d96bf424ca464ff0d
.reloc	165376	9f771b18a1605fd2674a40f6199abe10

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for NmGQo304jDUpG_TcQiXtdXhx.exe

copyright for information about NmGQo304jDUpG_TcQiXtdXhx.exe