How to remove REGISTRATION WIZARD.EXE
- File Details
- Overview
- Analysis
REGISTRATION WIZARD.EXE
The module REGISTRATION WIZARD.EXE has been detected as Suspicious Object
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
d62a6d90efe7cb2973feafa61828cc0c |
| Size: |
548 KB |
| First Published: |
2017-06-08 07:10:22 (7 years ago) |
| Latest Published: |
2021-01-10 14:49:11 (3 years ago) |
| Status: |
Suspicious Object (on last analysis) |
|
| Analysis Date: |
2021-01-10 14:49:11 (3 years ago) |
Overview
| %sysdrive%\zv\serverfile |
| %sysdrive%\zv |
| %sysdrive%\zv |
| Windows 10 |
66.7% |
|
| Windows 7 |
33.3% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0001f320 |
| Name |
Size of data |
MD5 |
| .text |
135168 |
c6473530ab34b6f6c837035a0a10f715 |
| .rdata |
24576 |
b64c4c0e9d1064472a0ae52e8608df34 |
| .data |
16384 |
57a7423957e262001476d8cdc9ab14cd |
| .rsrc |
376832 |
dd1c5fe32c968fa0631f19cd14de352d |
