How to remove WinUpdate.exe

WinUpdate.exe

The module WinUpdate.exe has been detected as Trojan.Gen

WinUpdate.exe
Remove WinUpdate.exe

File Details

Product Name:

Microsoft Corporation
Company Name:

MicrosoftВ® WindowsВ® Operating System
MD5: 7457c0cd3606bf3b8ce4c7b370778e87
Size: 5 MB
First Published: 2023-01-02 23:43:22 (2 years ago)
Latest Published: 2023-01-02 23:43:22 (2 years ago)
Status: Trojan.Gen (on last analysis)
Analysis Date: 2023-01-02 23:43:22 (2 years ago)

Overview

Signed By: PIRIFORM SOFTWARE LIMITED
Status: Invalid (digital signature could be stolen or file could be patched)

Common Places:

%appdata%\windowsupdateservice

Geography:

100.0%

OS Version:

Windows 10 100.0%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000140000000
Entry Address: 0x006aae42

PE Sections:

Name Size of data MD5
.text 0 d41d8cd98f00b204e9800998ecf8427e
.data 0 d41d8cd98f00b204e9800998ecf8427e
.rdata 0 d41d8cd98f00b204e9800998ecf8427e
.pdata 0 d41d8cd98f00b204e9800998ecf8427e
.xdata 0 d41d8cd98f00b204e9800998ecf8427e
.bss 0 d41d8cd98f00b204e9800998ecf8427e
.idata 0 d41d8cd98f00b204e9800998ecf8427e
.CRT 0 d41d8cd98f00b204e9800998ecf8427e
.tls 0 d41d8cd98f00b204e9800998ecf8427e
./KG 0 d41d8cd98f00b204e9800998ecf8427e
.Yv} 1536 f48200f9a54870f63eaca98dbac43ad0
.fW* 5538816 0f52e1fc62b3e86d3aac02d14132a9a4
.reloc 512 22282e7dbafe970b7df130180e24c4db
.rsrc 2048 48190bdbc6d8cc8e08add06bc0ce5b15

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for WinUpdate.exe
copyright for information about WinUpdate.exe