How to remove Updater.exe
- File Details
- Overview
- Analysis
Updater.exe
The module Updater.exe has been detected as Worm.Ramnit
File Details
| Product Name: |
|
| MD5: |
d291feba9bb2a9d9fd11275d35c8d4b5 |
| Size: |
1 MB |
| First Published: |
2018-04-15 08:11:31 (7 years ago) |
| Latest Published: |
2018-04-15 08:11:31 (7 years ago) |
| Status: |
Worm.Ramnit (on last analysis) |
|
| Analysis Date: |
2018-04-15 08:11:31 (7 years ago) |
| %sysdrive%\งานกู้ 240658\root\program files\skillbrains\updater |
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x001d1000 |
| Name |
Size of data |
MD5 |
| .text |
424960 |
8f29eabc14a3e6c95fb1d0218668d6e3 |
| .rdata |
104960 |
80ad4706619a3cb7069b4984d7c87fe8 |
| .data |
7168 |
714f3aedb09c38e99b23fb9d9c65bbbe |
| .rsrc |
10752 |
562618b023c04e256ca630df099db144 |
| .reloc |
18432 |
82202700651f400a75a0f6399ddeed9f |
| .text |
186880 |
a6e48dbd54b2d764a3c5a39a7f258176 |
| .text |
186880 |
26808e516c34faf9d97b5265fff1ef97 |
| .text |
186880 |
51095cf7e38afb26b6713cc26b6b5cb2 |
| .text |
186880 |
abef7e6d1dab8285f58db74790e53cf3 |
| .text |
186880 |
01953002288357f1c7dd33e787303e14 |
| .text |
186880 |
23aea821d8af17cbb6dfd61634f0096d |
| .text |
186880 |
2d93e6858e71a8466b73cbf372564cfc |
| .text |
166400 |
ef818a4a35dedbc2bd36ae8a1b79f8f1 |
