How to remove TRXLoader.exe
- File Details
- Overview
- Analysis
TRXLoader.exe
The module TRXLoader.exe has been detected as Ransom.Sabsik
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
34c74de92902c31e066659a644b18e1d |
| Size: |
260 KB |
| First Published: |
2022-02-11 23:27:19 (3 years ago) |
| Latest Published: |
2023-02-02 23:43:53 (2 years ago) |
| Status: |
Ransom.Sabsik (on last analysis) |
|
| Analysis Date: |
2023-02-02 23:43:53 (2 years ago) |
Overview
| Signed By: |
Roblox Corporation |
| Status: |
Invalid (digital signature could be stolen or file could be patched) |
| %profile%\onedrive\рабочий стол |
| %temp%\temp1_trx.zip |
| %profile%\downloads\trx (1) |
| %desktop% |
| %temp%\temp1_trx (1).zip |
| %temp%\rar$dra1956.30542 |
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00024be2 |
| MVID: |
3aaf9e00-6bcd-4822-909d-6d87a5904897 |
| Name |
Size of data |
MD5 |
| .text |
142336 |
df3fa4627812ebfbf6e5a654eb8cac91 |
| .rsrc |
116736 |
ea1a10bb20150668ef1b27eecf430c3c |
| .reloc |
512 |
89f98c2cd055a55cda6c15149e73a851 |
