How to remove XmgSawnqAVEo.exe

XmgSawnqAVEo.exe

The module XmgSawnqAVEo.exe has been detected as Trojan.LoadMoney

XmgSawnqAVEo.exe
Remove XmgSawnqAVEo.exe

File Details

Product Name:

ACETETIPUDOKLE
Company Name:

©Onam otnacireotum

MD5: d49332b5f689fb1a1e7d86b29f7563eb
Size: 2 MB
First Published: 2017-08-28 15:06:34 (7 years ago)
Latest Published: 2017-08-28 15:07:24 (7 years ago)
Status: Trojan.LoadMoney (on last analysis)
Analysis Date: 2017-08-28 15:07:24 (7 years ago)

Overview

Signed By: OOO, "Plita"
Status: Valid

Common Places:

%localappdata%\temp
%appdata%\microsoft

File Names:

AeWlMVayl0dH.exe
XmgSawnqAVEo.exe
zMQpTbQnVBKo.exe
XCv9COuR7JLd.exe
fPWlnajC2gKc.exe
Qi7U5Sm1ufwG.exe
ovLxro0lEM6i.exe
i4oqRMXWhZgJ.exe
jTRqJljPNRdz.exe
4DzZg2oymICa.exe
kehV0tM6pyYh.exe
faQlCKmpD0Am.exe
1cEmP8xMWe5m.exe
zdjDioIMQ2Kl.exe
pVM22iq1fsG2.exe
msi.exe

Geography:

100.0%

OS Version:

Windows 10 100.0%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00001229

PE Sections:

Name Size of data MD5
.text 119296 fcfd635395a5bc3edf59d000e8b29da5
.rdata 230400 5b589efbbf1d48be8ab1c199f730c885
.data 523264 7f71ee14fbd9fa68649b7c4ccb1b4e10
.GAC63D 164864 9d7cec40f0e8a5cdb83c8ea599987bd4
.Ge29w4 367104 5b380a8dd5c3cb4fda3e3ae062603059
.r8hl7s 242688 b5c3ee82be0fc4b41a33b70940237801
.4837l 285696 887b788daf6b958563f0b9ea33f93df5
.Gesf 188928 8cc4e3a8f95130472ac8cb56ca455ed5
.rsrc 76288 60c7fd044d827b362a9f9225c7d5c851
.reloc 4096 3d83666d900013037ce0415f17702efc

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for XmgSawnqAVEo.exe
copyright for information about XmgSawnqAVEo.exe