How to remove PBM_X64.exe
- File Details
- Overview
- Analysis
PBM_X64.exe
The module PBM_X64.exe has been detected as SUSP.XORed_MSDOS
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
7a5b9cac34037c0692b66baf5ca57c90 |
| Size: |
4 MB |
| First Published: |
2023-09-02 23:29:06 (2 years ago) |
| Latest Published: |
2023-09-02 23:29:06 (2 years ago) |
| Status: |
SUSP.XORed_MSDOS (on last analysis) |
|
| Analysis Date: |
2023-09-02 23:29:06 (2 years ago) |
| %sysdrive%\dx diplex backup data 0345-5222303\uninstal\ghost run\hiren_s_bootcd_winpe10_premium_edition\hiren_s_bootcd_winpe10_premium_edition\hbcd_pe_x64_build-190103\boot |
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00011def |
| Name |
Size of data |
MD5 |
| .text |
70656 |
9888cf9e494277cfbf8075366b23315a |
| .rdata |
12800 |
1359639b02bcb8f0a8743e6ead1c0030 |
| .data |
2048 |
9415c9c8dea3245d6d73c23393e27d8e |
| .rsrc |
350208 |
58cac7d0366bb9f37ea5d500ec84a01b |
