How to remove RuntimePack_x86_x64.exe

» File
File Details
Overview
Analysis

RuntimePack_x86_x64.exe

The module RuntimePack_x86_x64.exe has been detected as Trojan.Dapato

RuntimePack_x86_x64.exe

Remove RuntimePack_x86_x64.

File Details

Main Info:

Product Name:	RuntimePack x86/x64
Company Name:	jameszero
MD5:	580f563633f3cff970672701827f3d1d
Size:	24 MB
First Published:	2017-06-08 05:10:17 (7 years ago)
Latest Published:	2019-04-05 13:22:31 (5 years ago)

Analysis:

Status:	Trojan.Dapato (on last analysis)
Analysis Date:	2019-04-05 13:22:31 (5 years ago)

Common Places:

%temp%\rar$exa0.020\drpsu11-final\programs

%sysdrive%\программы\drpsu11-final

%sysdrive%\11\установочные\drpsu11-final

%sysdrive%\برنامه\garafik

%desktop%\server

%sysdrive%

%sysdrive%\f\image\all driver

%sysdrive%\ \drivers.exe

%sysdrive%\notebook\lenovo\mis utilidades\drpsu11-final

%sysdrive%\programas\drpsu11-final

Geography:

	16.7%
	11.1%
	11.1%
	11.1%
	11.1%
	11.1%
	11.1%
	5.6%
	5.6%
	5.6%

OS Version:

Windows 7	50.0%
Windows 10	38.9%
Windows XP	11.1%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x000137df

PE Sections:

Name	Size of data	MD5
.text	78336	56d5001242b93536c552dc6899bd9205
.rdata	13824	383e75e95e234ebf5657ba58322fa6eb
.data	2048	533aea5ccfff1788cbcf97e9c19fdd40
.rsrc	28160	b88b62fd6ba439b36f5b54b0ea8300a7

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for RuntimePack_x86_x64.exe

copyright for information about RuntimePack_x86_x64.exe