Information about Online-Guardian.VIR

Online-Guardian.VIR

File Details

Product Name:

Online Guardian
Company Name:

Microleaves LTD
MD5: f26f5e00f9d1104871a6fdf4d0061ba3
Size: 542 KB
First Published: 2017-05-21 04:03:13 (7 years ago)
Latest Published: 2020-05-29 15:45:18 (4 years ago)
Status: Undefined (on last analysis)
Analysis Date: 2020-05-29 15:45:18 (4 years ago)

Overview

Signed By: MICROLEAVES LTD
Status: Valid

Common Places:

%programfiles%\microleaves\online application\version 2.6.0
%sysdrive%\adwcleaner\quarantine\files\ugqkhajbxguckerwofvancchrixfpncw\online application\version 2.6.0
%sysdrive%\adwcleaner\quarantine\files\dmsvofzycxacbqxuyuvalknerntclwhb\online application\version 2.6.0
%sysdrive%\adwcleaner\quarantine\files\biqaqryhfvjwubuphgcjwncudshbhwyz\online application\version 2.6.0
%sysdrive%\adwcleaner\quarantine\files\wrsugksaerptvfevoxebqumubftqywxz\online application\version 2.6.0
%sysdrive%\$recycle.bin\s-1-5-21-3252177484-2349872742-1693033493-1000\$r7bgy1o\online application\version 2.6.0
%sysdrive%\adwcleaner\quarantine\files\ohwkrjoaargicwsdkcgigtjapmiuawfy\online application\version 2.6.0
%sysdrive%\adwcleaner\quarantine\files\ipmyqemofboxzfiztngkntmqztmaepqu\online application\version 2.6.0
%sysdrive%\adwcleaner\quarantine\files\jzaxpewiishnazwkjaywxjtskbcggaqu\online application\version 2.6.0
%sysdrive%\adwcleaner\quarantine\files\awspjquljwfhdfsklurnjhwgugdovhmr\online application\version 2.6.0

File Names:

Online-Guardian.exe
Online-Guardian.VIR
Online-Guardian.exe.quarantined
427476.rbf
aqq.exe

Geography:

21.6%
16.4%
5.7%
4.2%
3.9%
3.8%
2.3%
2.3%
2.1%
1.9%
1.9%
1.8%
1.7%
1.5%
1.5%
1.4%
1.2%
1.2%
1.0%
0.9%
0.9%
0.9%
0.9%
0.9%
0.8%
0.8%
0.8%
0.7%
0.7%
0.6%
0.6%
0.6%
0.5%
0.5%
0.5%
0.5%
0.5%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%

OS Version:

Windows 10 52.1%
Windows 7 39.2%
Windows 8.1 7.5%
Windows 8 1.0%
Windows Vista 0.1%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000012c0

PE Sections:

Name Size of data MD5
.text 105984 4ef5b97d80b55949ad7b2d1c1ff92d33
.data 512 0ef7780dc4a821f7c8d2d14b9b4830ab
.rdata 6656 063be716a067e3e7caba823fac26e491
.eh_fram 11776 2841058ce3e9c96c1fa40f459da3cf26
.bss 0 00000000000000000000000000000000
.idata 3584 9d729caa1b9684dec72eb6b8e47a23f0
.CRT 512 63611519e03f45643a119ea42b8de125
.tls 512 210f409e50035e70c2412ea102d8a2e5
.rsrc 371712 757d4ad137363ef2a9b2a6f5997d252f

More information:

Search on Virustotal
copyright for information about Online-Guardian.VIR