How to remove OLFMOD32.EXE
- File Details
- Overview
- Analysis
OLFMOD32.EXE
The module OLFMOD32.EXE has been detected as Trojan.ExtHeur!
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
93c8a89a69eeeb357aa4dc9cc3fe45ec |
| Size: |
664 KB |
| First Published: |
2025-11-30 23:00:42 (2 weeks ago) |
| Latest Published: |
2025-11-30 23:00:57 (2 weeks ago) |
| Status: |
Trojan.ExtHeur! (on last analysis) |
|
| Analysis Date: |
2025-11-30 23:00:57 (2 weeks ago) |
| %system%\i\beldo\maestria\office\pfiles\msoffice\office |
| %sysdrive%\genapilocal\passage_recup\beldo\maestria\office\pfiles\msoffice\office |
| Windows Server 2012 |
100.0% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0007feae |
| Name |
Size of data |
MD5 |
| .text |
520704 |
c84ffbb8f257e0faba3f1d78b20b0b72 |
| .bss |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| .rdata |
13824 |
bd958c9c26e09ace9c3480fde1a8a3bf |
| .data |
33792 |
38647acd6312150ba18fe8dc403384c7 |
| .idata |
8704 |
ed5c5e59a21c65c765cda9ab37f5ab46 |
| .edata |
512 |
3681ad6627ca89ab9f34ef65c791d9eb |
| .rsrc |
2048 |
689e0b2731e50bea67f23df2acf9afba |
| .reloc |
36864 |
961473816cadc2d6e29933e1dddcf770 |
| .2bss |
61440 |
84c48b8da7e9b9d3c5667ad9819debd9 |
