How to remove WinmonProcessMonitor.sys
- File Details
- Overview
- Analysis
WinmonProcessMonitor.sys
The module WinmonProcessMonitor.sys has been detected as Trojan.Agent
File Details
| MD5: |
29981ec427e564d715445c812fc73411 |
| Size: |
13 KB |
| First Published: |
2021-12-06 21:19:57 (3 years ago) |
| Latest Published: |
2023-04-14 23:29:42 (2 years ago) |
| Status: |
Trojan.Agent (on last analysis) |
|
| Analysis Date: |
2023-04-14 23:29:42 (2 years ago) |
| %system% |
| %system% |
| %system% |
| %system% |
| %system% |
| %system% |
| %system% |
| %system% |
| %system% |
| %system% |
|
18.2% |
|
|
9.1% |
|
|
9.1% |
|
|
9.1% |
|
|
9.1% |
|
|
9.1% |
|
|
9.1% |
|
|
9.1% |
|
|
9.1% |
|
|
9.1% |
|
| Windows 10 |
66.7% |
|
| Windows 7 |
25.0% |
|
| Windows 8.1 |
8.3% |
|
Analysis
| Subsystem: |
Native |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000140000000 |
| Entry Address: |
0x000011a0 |
| Name |
Size of data |
MD5 |
| .text |
2048 |
b12f9e1588ce1fcfbfee4b9ad599ac6c |
| .rdata |
7680 |
b8dbb03d2dcf2747d61be548a82b283a |
| .data |
512 |
8ac373aee33e9d0066c2cdb7b3665460 |
| .pdata |
512 |
682a9efda17ac8544900b10688cafe93 |
| INIT |
1024 |
61114a049ec943c5eb50f581c63959c2 |
| .reloc |
512 |
70bf5fb640dfd036352d94448cb232d7 |
