How to remove Runtimebroker4.exe
- File Details
- Overview
- Analysis
Runtimebroker4.exe
The module Runtimebroker4.exe has been detected as Spy.Keylogger
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
cd8eef16e68b1c83ba714ff4f733d49e |
| Size: |
562 KB |
| First Published: |
2020-12-26 17:39:41 (4 years ago) |
| Latest Published: |
2021-01-12 17:57:15 (4 years ago) |
| Status: |
Spy.Keylogger (on last analysis) |
|
| Analysis Date: |
2021-01-12 17:57:15 (4 years ago) |
| %windir% |
| %windir% |
| %windir% |
| %windir% |
| Windows 10 |
55.6% |
|
| Windows 7 |
33.3% |
|
| Windows 8.1 |
11.1% |
|
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0000bcd1 |
| Name |
Size of data |
MD5 |
| .text |
442368 |
9d0b77e8f3f5c82370ab6d681edc29b3 |
| .rdata |
103936 |
9b4e9350cd8b3b8733801bfd392ab5b0 |
| .data |
4608 |
c4ed5b746dee6e38362c0d22c8d9be24 |
| .tls |
512 |
1f354d76203061bfdd5a53dae48d5435 |
| .rsrc |
1536 |
3db844806d755cf32affb40af6104d98 |
| .reloc |
21504 |
26829375b2fbbdba5f498f6212413459 |
