How to remove SketchUp.exe
- File Details
- Overview
- Analysis
SketchUp.exe
The module SketchUp.exe has been detected as Trojan.Heur!
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
b7615de6be0077de78179e305b644b20 |
| Size: |
34 MB |
| First Published: |
2018-01-23 07:07:31 (7 years ago) |
| Latest Published: |
2020-01-19 21:07:29 (5 years ago) |
| Status: |
Trojan.Heur! (on last analysis) |
|
| Analysis Date: |
2020-01-19 21:07:29 (5 years ago) |
Overview
| Signed By: |
Trimble Navigation |
| Status: |
Invalid (digital signature could be stolen or file could be patched) |
| %programfiles% |
| %profile%\downloads\sketchup pro 2018 v18.0.16975 (x64) final rus |
| %programfiles%\sketchup |
| %sysdrive%\sinus\system\grafika\sketchup\sketchup 18.0.16975 |
| %desktop%\program\setup |
| %sysdrive%\program\medya\resim\auto cad\sketchup.pro.2018.v18.0.16975.x64 |
| %sysdrive%\program\medya\resim\auto cad\sketchup.pro.18.0.16975 bit 64 |
| %sysdrive%\escritorio 3-30-18\sketchup pro 2018 full |
| %programfiles%\sketchup |
| %programfiles%\sketchup |
|
29.4% |
|
|
23.5% |
|
|
11.8% |
|
|
5.9% |
|
|
5.9% |
|
|
5.9% |
|
|
5.9% |
|
|
5.9% |
|
|
5.9% |
|
| Windows 10 |
64.7% |
|
| Windows 7 |
23.5% |
|
| Windows 8.1 |
11.8% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000140000000 |
| Entry Address: |
0x00913028 |
| Name |
Size of data |
MD5 |
| .text |
11140608 |
030e58d93995795612f75a0cf736ee7a |
| jkl.text |
1562624 |
8762749b43597b51602fd4449b1812a9 |
| jkl.bss |
0 |
00000000000000000000000000000000 |
| .rdata |
5124608 |
cab051bf0e18b5fbfb0a963fe3cc5982 |
| .data |
624640 |
ca759394a029c8e593016a9e485150c3 |
| .pdata |
682496 |
97ff0951cb241c7359bf56e159a6c3b4 |
| .gfids |
1024 |
6cbd8d80b5f4d6dd2f47785d21f4a456 |
| .giats |
512 |
68dd6699729789434cca98dd343b1c75 |
| .tls |
512 |
1f354d76203061bfdd5a53dae48d5435 |
| _RDATA |
35328 |
f02d654af6a58f0d6356796f07e72a67 |
| jkl.xdat |
138752 |
df9891ce1fd280dd8c169a6ca219e199 |
| jkl.pdat |
101888 |
d70a31cdeead0a18cfdf1d64f1b80537 |
| jkl.data |
148992 |
320b8d7b2367157152f0a15192a59153 |
| jkl.rdat |
346624 |
3464cc06bdc437de3fdfc0c725f4dfe6 |
| jkl.CRT |
512 |
5dd12de3e6a0b29d90f9c4f25342fa79 |
| .rsrc |
16023552 |
0cc81fdc1e928f8980a66d636ddbbbdd |
| .reloc |
177152 |
9db3f84d08fb0784cb861500ed6d9ff6 |
