How to remove TSClient.exe
- File Details
- Overview
- Analysis
TSClient.exe
The module TSClient.exe has been detected as Trojan.Downloader
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
40b85022b0bfc1942564d4f2d3c002f1 |
| Size: |
3 MB |
| First Published: |
2017-05-25 06:08:10 (6 years ago) |
| Latest Published: |
2020-12-23 10:07:34 (3 years ago) |
| Status: |
Trojan.Downloader (on last analysis) |
|
| Analysis Date: |
2020-12-23 10:07:34 (3 years ago) |
Overview
| Signed By: |
2X Software Malta Ltd |
| Status: |
Invalid (digital signature could be stolen or file could be patched) |
| %profile%\onedrive\skydrive120313\programy\portableapps\portableapps\2xclient\app |
| %profile%\portableapps\2xclient\app |
| %commonappdata%\downloads\portableapps\2xclient\app |
| %sysdrive%\27-11-2017\portableapps\portableapps\2xclient\app |
| %sysdrive%\torrent\portableapps\2xclient\app |
| %sysdrive%\portableapps\portableapps\2xclient\app |
| %profile%\downloads\portableapps.com\portableapps\2xclient\app |
| %sysdrive%\portableapps\2xclient\app |
| %sysdrive%\0-day\1-usbbu\1portableapps\portableapps\2xclient\app |
| %sysdrive%\programs\portable apps 2017 full pack\portableapps.2017.full.pack_p30download.com\portableapps\2xclient\app |
| TSClient.exe |
| A0100303.exe |
|
23.5% |
|
|
14.7% |
|
|
8.8% |
|
|
8.8% |
|
|
8.8% |
|
|
5.9% |
|
|
2.9% |
|
|
2.9% |
|
|
2.9% |
|
|
2.9% |
|
|
2.9% |
|
|
2.9% |
|
|
2.9% |
|
|
2.9% |
|
|
2.9% |
|
|
2.9% |
|
| Windows 10 |
84.2% |
|
| Windows 7 |
10.5% |
|
| Windows 8.1 |
5.3% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x001dced5 |
| Name |
Size of data |
MD5 |
| .text |
2198016 |
526364a7bfd32618f3f47072df7eeb1b |
| .rdata |
447488 |
bbbb6c76752d0e20809827b3d81ae20f |
| .data |
39936 |
aecd2f8692a1af760ffdf061d05ee2dc |
| .rsrc |
684032 |
4620cf03cfde38365086a9701670fdef |
