How to remove TempOneClickRoot.exe
- File Details
- Overview
- Analysis
TempOneClickRoot.exe
The module TempOneClickRoot.exe has been detected as Rogue.Gen
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
8667564b59926758b5f7cfcf33a75355 |
| Size: |
24 MB |
| First Published: |
2017-05-25 21:08:35 (6 years ago) |
| Latest Published: |
2020-11-29 18:01:50 (3 years ago) |
| Status: |
Rogue.Gen (on last analysis) |
|
| Analysis Date: |
2020-11-29 18:01:50 (3 years ago) |
Overview
| %localappdata% |
| %sysdrive%\windows.old\users\brock\appdata |
| %localappdata% |
| %sysdrive%\appdata |
| %localappdata% |
| %localappdata% |
| %localappdata% |
| %localappdata% |
| %localappdata% |
| %localappdata% |
|
20.2% |
|
|
9.5% |
|
|
8.3% |
|
|
8.3% |
|
|
8.3% |
|
|
6.0% |
|
|
3.6% |
|
|
3.6% |
|
|
2.4% |
|
|
2.4% |
|
|
2.4% |
|
|
2.4% |
|
|
2.4% |
|
|
2.4% |
|
|
2.4% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
| Windows 10 |
61.2% |
|
| Windows 7 |
30.6% |
|
| Windows 8.1 |
7.1% |
|
| Windows 8 |
1.2% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000d0616 |
| Name |
Size of data |
MD5 |
| .text |
1120768 |
2c619467f522686d6343597f7a89dca5 |
| .rdata |
316416 |
9d01ec8f5652413ceda87b2dceb03001 |
| .data |
20992 |
814a44813895f035f47109fad669cb42 |
| .gfids |
1024 |
b4be3880843faa5dd8f4d599bd629194 |
| .tls |
512 |
1f354d76203061bfdd5a53dae48d5435 |
| .rsrc |
97280 |
bc1527de81eefb8cdf918ab22e4ec706 |
| .reloc |
82432 |
3ed7eb3a92bf2de627821fc918fa5ec6 |
