How to remove RecoverKeysDemo.exe
- File Details
- Overview
- Analysis
RecoverKeysDemo.exe
The module RecoverKeysDemo.exe has been detected as Adware.OpenCandy
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
ff7ead089a7fa48a146f7dc416a62a13 |
| Size: |
5 MB |
| First Published: |
2026-01-27 23:01:18 (2 weeks ago) |
| Latest Published: |
2026-01-27 23:01:18 (2 weeks ago) |
| Status: |
Adware.OpenCandy (on last analysis) |
|
| Analysis Date: |
2026-01-27 23:01:18 (2 weeks ago) |
Overview
| Signed By: |
ONE UP LTD. |
| Status: |
Invalid (digital signature could be stolen or file could be patched) |
| %sysdrive%\_programme windows\systemtools\keyfinder\nuclear coffee recover keys 7.0.3.85.zip |
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0000f3bc |
| Name |
Size of data |
MD5 |
| .text |
57344 |
e7258ec5a7a1b8a2b6315ab87ca3921c |
| .itext |
3072 |
31d2c0992c2104514a2e4d29f1b0aa33 |
| .data |
3584 |
969ccd0368074bb66069f6791321a500 |
| .bss |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| .idata |
3584 |
94012dc57e6c954757bdae044cba54a4 |
| .tls |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| .rdata |
512 |
8e2aa0e7a135122ada33304886872a4a |
| .rsrc |
328704 |
1db742a5c14ff66978c85b4fe83698bc |
