How to remove WeAreDevs_API.dll
- File Details
- Overview
- Analysis
WeAreDevs_API.dll
The module WeAreDevs_API.dll has been detected as Trojan.Agent
File Details
| Product Name: |
|
| MD5: |
286b3f23f10c9d11101132e6e80515e9 |
| Size: |
12 KB |
| First Published: |
2020-06-06 23:09:41 (5 years ago) |
| Latest Published: |
2022-01-16 21:59:52 (3 years ago) |
| Status: |
Trojan.Agent (on last analysis) |
|
| Analysis Date: |
2022-01-16 21:59:52 (3 years ago) |
| %profile%\downloads |
| %desktop%\新增資料夾 (7)\新增資料夾 (4)\新增資料夾 (6)\vibraclick_v1067_by_pgl823\ahmed mode new\ahmed mode new\ahmed mode |
| %desktop%\新增資料夾 (7)\新增資料夾 (4)\新增資料夾 (6)\vibraclick_v1067_by_pgl823\ahmed mode new\ahmed mode new\ahmed mode |
| %profile%\onedrive\escritorio\dansploit_1.7 by [vito_zbku] |
| %profile%\onedrive\escritorio |
| %desktop%\для флэшки |
| %desktop%\saves\nova pasta (2) |
| %desktop%\redline_v3.0-bobthefrog\redline v3.0-bobthefrog\redline_v3.0_bobthefrog\redline v3.0 [bobthefrog] |
| %desktop%\redline_v3.0-bobthefrog\redline v3.0-bobthefrog\redline_v3.0_bobthefrog\redline v3.0 [bobthefrog] |
| %desktop%\redline_v3.0-bobthefrog\redline v3.0-bobthefrog\redline_v3.0_bobthefrog\redline v3.0 [bobthefrog] |
|
19.2% |
|
|
15.4% |
|
|
11.5% |
|
|
11.5% |
|
|
7.7% |
|
|
7.7% |
|
|
7.7% |
|
|
7.7% |
|
|
3.8% |
|
|
3.8% |
|
|
3.8% |
|
| Windows 10 |
70.0% |
|
| Windows 7 |
26.7% |
|
| Windows 8.1 |
3.3% |
|
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x10000000 |
| Entry Address: |
0x0000482a |
| MVID: |
6a372026-9c21-46e5-b3c0-741cb06179ee |
| Typelib ID: |
c2808afd-65cb-4156-8aef-df968305f07e |
| Name |
Size of data |
MD5 |
| .text |
10752 |
17f45018061b3f41c3abe4eab0ae9f73 |
| .rsrc |
1024 |
ad7b9d946486509cbd7d305b6f2229b0 |
| .reloc |
512 |
e685f65aaf333d2f074b81d2dde95cf7 |
