How to remove WinPcap_4_1_3.exe
- File Details
- Overview
- Analysis
WinPcap_4_1_3.exe
The module WinPcap_4_1_3.exe has been detected as Trojan.CainAbel
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
a11a2f0cfe6d0b4c50945989db6360cd |
| Size: |
893 KB |
| First Published: |
2017-05-22 09:03:28 (7 years ago) |
| Latest Published: |
2024-10-13 23:02:15 (7 months ago) |
| Status: |
Trojan.CainAbel (on last analysis) |
|
| Analysis Date: |
2024-10-13 23:02:15 (7 months ago) |
Overview
| %profile% |
| %programfiles%\cain\driver |
| %programfiles%\cain |
| %localappdata% |
| %programfiles%\cain |
| %programfiles%\cain |
| %programfiles%\cain |
| %programfiles%\cain |
| %programfiles%\cain |
| %programfiles%\cain |
| WinPcap.exe |
| WinPcap_4_1_3.exe |
| Tempwinpcap.exe |
| United States |
13.5% |
|
| Iran |
7.0% |
|
| Egypt |
5.9% |
|
| United Kingdom |
4.9% |
|
| Vietnam |
4.9% |
|
| Turkey |
3.8% |
|
| Indonesia |
3.8% |
|
| Thailand |
3.8% |
|
| India |
3.2% |
|
| Mexico |
2.7% |
|
| Bulgaria |
2.7% |
|
| Canada |
2.2% |
|
| Russia |
2.2% |
|
| Morocco |
1.6% |
|
| Qatar |
1.6% |
|
| Brazil |
1.6% |
|
| Australia |
1.6% |
|
| Philippines |
1.6% |
|
| Belarus |
1.1% |
|
| Israel |
1.1% |
|
| Iraq |
1.1% |
|
| Netherlands |
1.1% |
|
| Austria |
1.1% |
|
| France |
1.1% |
|
| Denmark |
1.1% |
|
| Luxembourg |
1.1% |
|
| Belgium |
1.1% |
|
| Saudi Arabia |
1.1% |
|
| Peru |
1.1% |
|
| New Zealand |
1.1% |
|
| Spain |
1.1% |
|
| Italy |
1.1% |
|
| Palestine |
1.1% |
|
| Romania |
1.1% |
|
| Portugal |
1.1% |
|
| Nigeria |
1.1% |
|
| Kazakhstan |
1.1% |
|
| Poland |
0.5% |
|
| Germany |
0.5% |
|
| South Korea |
0.5% |
|
| Croatia |
0.5% |
|
| Taiwan |
0.5% |
|
| Maldives |
0.5% |
|
| Hungary |
0.5% |
|
| Bolivia |
0.5% |
|
| Argentina |
0.5% |
|
| Bangladesh |
0.5% |
|
| Hong Kong |
0.5% |
|
| Japan |
0.5% |
|
| Kenya |
0.5% |
|
| Paraguay |
0.5% |
|
| Slovakia |
0.5% |
|
| Bosnia and Herzegovina |
0.5% |
|
| Slovenia |
0.5% |
|
| Ethiopia |
0.5% |
|
| Finland |
0.5% |
|
| Colombia |
0.5% |
|
| Windows 10 |
59.6% |
|
| Windows 7 |
31.4% |
|
| Windows 8.1 |
6.9% |
|
| Windows 8 |
0.5% |
|
| Windows Server 2003 |
0.5% |
|
| Windows XP |
0.5% |
|
| Windows Server 2008 R2 |
0.5% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000030fa |
| Name |
Size of data |
MD5 |
| .text |
24064 |
856b32eb77dfd6fb67f21d6543272da5 |
| .rdata |
5120 |
dc77f8a1e6985a4361c55642680ddb4f |
| .data |
1024 |
7922d4ce117d7d5b3ac2cffe4b0b5e4f |
| .ndata |
0 |
00000000000000000000000000000000 |
| .rsrc |
17408 |
ba26f4f9f9b95c2435c1dbf47e17a040 |
