How to remove RuntimeBroker.exe

» File
File Details
Overview
Analysis

RuntimeBroker.exe

The module RuntimeBroker.exe has been detected as Suspicious Object

RuntimeBroker.exe

Remove RuntimeBroker.exe

File Details

Main Info:

Product Name:	MicrosoftВ® WindowsВ® Operating System
Company Name:	Microsoft
MD5:	595e541cc53c1b909e395c2ebb3032b4
Size:	404 KB
First Published:	2021-10-03 20:17:25 (4 years ago)
Latest Published:	2021-10-03 20:17:25 (4 years ago)

Analysis:

Status:	Suspicious Object (on last analysis)
Analysis Date:	2021-10-03 20:17:25 (4 years ago)

Common Places:

%appdata%

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000140000000
Entry Address:	0x000513a0

PE Sections:

Name	Size of data	MD5
.text	343040	d45ad904d6a54a8c8bcf2a29c90eee6e
.rdata	57856	5fb4a3cedb1d161b1610974b158b7a34
.data	512	3190493e51dc607e8698b25313f138e6
.pdata	8704	1ad96411c548de2143720f7f1da0facb
.rsrc	1024	7f2c07a2a2fc903ca94b78035fc9622f
.reloc	2048	081e97eb3f5a804c413e3a9df9085df1

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for RuntimeBroker.exe

copyright for information about RuntimeBroker.exe