How to remove WhatSender.exe
- File Details
- Overview
- Analysis
WhatSender.exe
The module WhatSender.exe has been detected as Trojan.Packed
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
02e76323c145414cee0e39cfa6709c8c |
| Size: |
2 MB |
| First Published: |
2019-05-11 09:05:33 (6 years ago) |
| Latest Published: |
2021-11-06 21:28:55 (3 years ago) |
| Status: |
Trojan.Packed (on last analysis) |
|
| Analysis Date: |
2021-11-06 21:28:55 (3 years ago) |
| %sysdrive%\fallobst3\whatsender-pro-v4-0-p2p |
| %sysdrive%\system volume information\_restore{67c66571-c41c-425e-9235-affdb47f9cb2} |
| %desktop%\whatsender pro 4.0 |
| %profile%\downloads\whatsender pro 4.0 |
| Windows 10 |
50.0% |
|
| Windows 7 |
25.0% |
|
| Windows XP |
25.0% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0095c18c |
| Name |
Size of data |
MD5 |
|
225792 |
9a35c9117801ffd581aab0f8b35318f3 |
|
0 |
00000000000000000000000000000000 |
|
512 |
e8d3180666c614e1515effe16e1d1884 |
| .rsrc |
28160 |
d7aca08bb55d675233e2db323d1f078d |
|
190464 |
c52b1ac0a5c18800ef1ceb8f7ce4b81c |
| .data |
2021888 |
d2eca776fa320e94f10b2b011cc12dcf |
