How to remove RecoverKeysCmd.exe
- File Details
- Overview
- Analysis
RecoverKeysCmd.exe
The module RecoverKeysCmd.exe has been detected as Adware.OpenCandy
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
6206032543927022e7f3f30f915ee136 |
| Size: |
13 MB |
| First Published: |
2025-11-05 23:01:31 (2 weeks ago) |
| Latest Published: |
2025-11-05 23:01:32 (2 weeks ago) |
| Status: |
Adware.OpenCandy (on last analysis) |
|
| Analysis Date: |
2025-11-05 23:01:32 (2 weeks ago) |
Overview
| Signed By: |
ONE UP LTD. |
| Status: |
Invalid (digital signature could be stolen or file could be patched) |
| %mydoc%\sauvegarde samsung 970 512 go\sauvegarde 16_05_2024\documents\recoverkey\ncrecoverkeysportable\app |
| %mydoc%\ncrecoverkeysportable\app |
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x003f2384 |
| Name |
Size of data |
MD5 |
| .text |
4121600 |
29033d8a0069260668f2fef55a0e13bc |
| .itext |
9216 |
1147c89747a400b49a2a4c6d2c0a978d |
| .data |
221696 |
ad2ff956d80c564ddfc063c158cdbde7 |
| .bss |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| .idata |
10240 |
1b57979ba3a197ccb315c6d15654c2d5 |
| .didata |
1024 |
b7314918d0db076464fcd51b2ccb8ac9 |
| .tls |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| .rdata |
512 |
77a415f63bfa507514f4cf0ded2f4b35 |
| .reloc |
262656 |
9ecbba46b34d11b3f0e68f0fb49ca2b7 |
| .rsrc |
9195520 |
3c5dfff079df0bbd2e3f854fc90bb41a |
