How to remove SVCHOST.del
- File Details
- Overview
- Analysis
SVCHOST.del
The module SVCHOST.del has been detected as Trojan.Agent
File Details
MD5: |
142221f272142b9a0d2749d569e3a848 |
Size: |
373 KB |
First Published: |
2017-05-21 17:07:09 (6 years ago) |
Latest Published: |
2021-11-23 21:17:44 (2 years ago) |
Status: |
Trojan.Agent (on last analysis) |
|
Analysis Date: |
2021-11-23 21:17:44 (2 years ago) |
%appdata%\system |
%temp%\is-72h4t.tmp |
%temp%\is-p6g98.tmp |
%temp%\is-4ef7k.tmp |
%temp%\is-7b0dn.tmp |
%temp%\is-hqhgc.tmp |
%temp%\is-topf3.tmp |
%temp%\is-e7cu0.tmp |
%temp%\is-debuv.tmp |
%temp%\is-iuh3j.tmp |
svchost.exe |
nssm.exe |
svchost.exe.q_Quarantine_1B4AD605_q |
SVCHOST.del |
|
62.4% |
|
|
19.6% |
|
|
10.3% |
|
|
3.3% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
Windows 10 |
45.2% |
|
Windows 7 |
36.4% |
|
Windows 8.1 |
17.3% |
|
Windows 8 |
1.1% |
|
Analysis
Subsystem: |
Windows CUI |
PE Type: |
pe |
OS Bitness: |
64 |
Image Base: |
0x0000000140000000 |
Entry Address: |
0x0001e864 |
Name |
Size of data |
MD5 |
.text |
163328 |
76ad6c7e6cd9ab781c1ffbb55251e974 |
.rdata |
37888 |
117e0746f5e9fb0da9b603108b608615 |
.data |
8704 |
669c0f7bd1cd965c9f968a44bdf8c74a |
.pdata |
8704 |
4ca2c0790951ce6b947d2b887219ac86 |
.rsrc |
162816 |
43dd50532c28a36d592688516f12b74b |