How to remove RecoverPasswords.exe

» File
File Details
Overview
Analysis

RecoverPasswords.exe

The module RecoverPasswords.exe has been detected as PUP.OpenCandy

RecoverPasswords.exe

Remove RecoverPasswords.exe

File Details

Main Info:

Product Name:	Recover Passwords
Company Name:	Recover Passwords
MD5:	d10012a9d8151257df98c66fbfec1776
Size:	9 MB
First Published:	2024-08-05 23:02:04 (10 months ago)
Latest Published:	2024-08-05 23:02:07 (10 months ago)

Analysis:

Status:	PUP.OpenCandy (on last analysis)
Analysis Date:	2024-08-05 23:02:07 (10 months ago)

Overview

Digital Signature

Signed By:	KeyFinder LTD
Status:	Invalid (digital signature could be stolen or file could be patched)

Common Places:

%sysdrive%\d - asus\at asus\download - compressed\hirensboot\hirents boot 15.5\dlc1\programs\files

%sysdrive%\arquivos at\download - compressed\hirensboot\hirents boot 15.5\dlc1\programs\files

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x006652b0

PE Sections:

Name	Size of data	MD5
.text	6678528	a479234994a9f439bb49d17c72823d0d
.itext	21504	55ab51ccbedf9eff30caaf79e62d3bc3
.data	137728	a72323974bf5204e4b2ec320292a4b13
.bss	0	d41d8cd98f00b204e9800998ecf8427e
.idata	19968	26b03cda63037bc3236c2566a4047cc9
.didata	3584	315d78e0b72cf099aa18b63384f8773a
.tls	0	d41d8cd98f00b204e9800998ecf8427e
.rdata	512	03da2477736dc9c4ff83c532b175692c
.reloc	594944	1576ca4dc950fdd9b8db86501700284e
.rsrc	2306048	f1a7db203b498b0899e1febcc2d9e675

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for RecoverPasswords.exe

copyright for information about RecoverPasswords.exe