How to remove WeChatAppEx.exe
- File Details
- Overview
- Analysis
WeChatAppEx.exe
The module WeChatAppEx.exe has been detected as Trojan.Heur!
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
51da34de8e50059631c8755935bee8cf |
| Size: |
185 MB |
| First Published: |
2024-10-17 23:01:05 (8 months ago) |
| Latest Published: |
2025-03-09 23:03:05 (3 months ago) |
| Status: |
Trojan.Heur! (on last analysis) |
|
| Analysis Date: |
2025-03-09 23:03:05 (3 months ago) |
Overview
| %appdata%\tencent\wechat\xplugin\plugins\radiumwmpf\11275\extracted |
| %appdata%\tencent\wechat\xplugin\plugins\radiumwmpf\11275\extracted |
| %appdata%\tencent\wechat\xplugin\plugins\radiumwmpf\11275\extracted |
| %appdata%\tencent\wechat\xplugin\plugins\radiumwmpf\11275\extracted |
| %appdata%\tencent\wechat\xplugin\plugins\radiumwmpf\11275\extracted |
| %appdata%\tencent\wechat\xplugin\plugins\radiumwmpf\11275\extracted |
|
16.7% |
|
|
16.7% |
|
|
16.7% |
|
|
16.7% |
|
|
16.7% |
|
|
16.7% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000140000000 |
| Entry Address: |
0x05314910 |
| Name |
Size of data |
MD5 |
| .text |
161605632 |
292cb81bde1b2029bea2b0eec38866bc |
| .rdata |
25775104 |
3032732282d3ebf7f90a70a07f0053b7 |
| .data |
612864 |
4333bcf47913373c5a1f6339c11f41e8 |
| .pdata |
4410880 |
c4c5e723d6a64d4d4d431349864b6c2a |
| .gxfg |
17408 |
8e2170d140fcaac7cdb4e694016ceb51 |
| .retplne |
512 |
bb264a64431a8df4177fafada274ef99 |
| .rodata |
4608 |
c642bc1527b5873b6dbf56c4a87d20cb |
| .tls |
1536 |
e7a44deeccfffd74a38b6d0b3578daf2 |
| CPADinfo |
512 |
60d3ea61d541c9be2e845d2787fb9574 |
| _RDATA |
512 |
b29b9052ec7f96a5619b0a8971de3a20 |
| malloc_h |
1536 |
10224033f7d3872b5eb38ebc5d542154 |
| .rsrc |
920576 |
3035f31bdfd148f41283e2e1cafa3208 |
| .reloc |
1027584 |
3c6185fbd9915ceb8efde4ff201814d8 |
