How to remove ZHSOt2BLu13V.exe
- File Details
- Overview
- Analysis
ZHSOt2BLu13V.exe
The module ZHSOt2BLu13V.exe has been detected as PUP.MailRu
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
29d2bc4f1568570ca1b620c9fe2a5b37 |
| Size: |
48 MB |
| First Published: |
2017-06-06 21:06:22 (6 years ago) |
| Latest Published: |
2019-05-24 16:22:27 (4 years ago) |
| Status: |
PUP.MailRu (on last analysis) |
|
| Analysis Date: |
2019-05-24 16:22:27 (4 years ago) |
Overview
| %temp%\39cbeed0-61e1-4741-8604-eedcf6f5aabb |
| %localappdata%\temp |
| %sysdrive%\$recycle.bin\s-1-5-21-1731075834-680073870-1864487519-1000\$r7ivs4w |
| %sysdrive%\system volume information\_restore{2e19001c-265e-4341-b3e2-2bc9a02ec5c6}\rp419 |
| %temp% |
| %appdata% |
| %profile%\ина\application data |
| %sysdrive%\windows.old\users\danil\appdata\local |
| %sysdrive% |
| %temp% |
| 39CBEED0-61E1-4741-8604-EEDCF6F5AABB.exe |
| ZHSOt2BLu13V.exe |
| amigo_setup.exe |
| zq2FpsueHBr9.exe |
| 0CAE900E-629E-436F-BE5F-E2D6BE223B18.exe |
| A0053398.exe |
| AmigoDistrib.exe |
| KB5E5FE54CDC832E81.exe |
| KB60AB81E4897B9D79.exe |
| CfKD36EF2Pk8.exe |
| lr9JieWEudMT.exe |
| X7XFF3l9Hra1.exe |
| A21AF882-65DE-4602-893E-59CD43722901.exe |
| KB83951DB2FAD1E07F.exe |
| NsxS4hOhbWj9.exe |
|
32.5% |
|
|
30.0% |
|
|
20.0% |
|
|
10.0% |
|
|
2.5% |
|
|
2.5% |
|
|
2.5% |
|
| Windows 7 |
60.0% |
|
| Windows 10 |
20.0% |
|
| Windows 8.1 |
7.5% |
|
| Windows Vista |
5.0% |
|
| Windows XP |
5.0% |
|
| Windows 8 |
2.5% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00005ef7 |
| Name |
Size of data |
MD5 |
| .text |
60928 |
33d4a991bfa32b01c699980cc4abc414 |
| .data |
4608 |
1f3019888ab55ad61d141c4d6230d507 |
| .idata |
2560 |
72649190cf89ab9deec298f5a7a9ca13 |
| .rsrc |
50440192 |
e462f1bae5d00080f92d91bf0e97b68f |
| .reloc |
3072 |
9d529d309972caba603f66f9d94adc16 |
