How to remove TSClientITA.dll
- File Details
- Overview
- Analysis
TSClientITA.dll
The module TSClientITA.dll has been detected as Trojan.Downloader
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
aa5a89d7ebb311aed5521131b269ffdb |
| Size: |
705 KB |
| First Published: |
2017-05-25 06:08:13 (6 years ago) |
| Latest Published: |
2020-12-23 10:03:37 (3 years ago) |
| Status: |
Trojan.Downloader (on last analysis) |
|
| Analysis Date: |
2020-12-23 10:03:37 (3 years ago) |
Overview
| Signed By: |
2X Software Malta Ltd |
| Status: |
Invalid (digital signature could be stolen or file could be patched) |
| %profile%\onedrive\skydrive120313\programy\portableapps\portableapps\2xclient\app |
| %profile%\portableapps\2xclient\app |
| %commonappdata%\downloads\portableapps\2xclient\app |
| %sysdrive%\27-11-2017\portableapps\portableapps\2xclient\app |
| %sysdrive%\torrent\portableapps\2xclient\app |
| %sysdrive%\portableapps\portableapps\2xclient\app |
| %profile%\downloads\portableapps.com\portableapps\2xclient\app |
| %sysdrive%\portableapps\2xclient\app |
| %sysdrive%\0-day\1-usbbu\1portableapps\portableapps\2xclient\app |
| %sysdrive%\programs\portable apps 2017 full pack\portableapps.2017.full.pack_p30download.com\portableapps\2xclient\app |
|
22.2% |
|
|
13.9% |
|
|
8.3% |
|
|
8.3% |
|
|
8.3% |
|
|
8.3% |
|
|
5.6% |
|
|
2.8% |
|
|
2.8% |
|
|
2.8% |
|
|
2.8% |
|
|
2.8% |
|
|
2.8% |
|
|
2.8% |
|
|
2.8% |
|
|
2.8% |
|
| Windows 10 |
75.0% |
|
| Windows 7 |
20.0% |
|
| Windows 8.1 |
5.0% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x10000000 |
| Entry Address: |
0x00001262 |
| Name |
Size of data |
MD5 |
| .text |
17920 |
9ad1c89fd0ba480963c99a6d4bf5f730 |
| .rdata |
8192 |
c27496eba8454a868d9beab7f9e7194c |
| .data |
3072 |
6c3da6de6319028c258cc98868daa525 |
| .rsrc |
686080 |
5c82726c6af7d45dbfbd80f635856622 |
| .reloc |
3584 |
8f5e6320455104101339e092377635bf |
