How to remove ZQbr4f.sys

» File
File Details
Overview
Analysis

ZQbr4f.sys

The module ZQbr4f.sys has been detected as Trojan.Agent

ZQbr4f.sys

Remove ZQbr4f.sys

File Details

Main Info:

MD5:	62bb7d1991edbb4396022551ac68b9ca
Size:	2 MB
First Published:	2020-11-15 00:54:56 (4 years ago)
Latest Published:	2021-07-20 20:17:36 (4 years ago)

Analysis:

Status:	Trojan.Agent (on last analysis)
Analysis Date:	2021-07-20 20:17:36 (4 years ago)

Overview

Digital Signature

Signed By:	Fuqing Yuntan Network Tech Co.,Ltd.
Status:	Valid

Common Places:

%profile%

%profile%

%profile%

%appdata%

%appdata%\microsoft\windows

%programs%

%programs%

%profile%

%profile%

%commonprograms%

Geography:

	18.8%
	7.2%
	7.2%
	5.8%
	4.3%
	4.3%
	4.3%
	4.3%
	4.3%
	2.9%
	2.9%
	2.9%
	1.4%
	1.4%
	1.4%
	1.4%
	1.4%
	1.4%
	1.4%
	1.4%
	1.4%
	1.4%
	1.4%
	1.4%
	1.4%
	1.4%
	1.4%
	1.4%
	1.4%
	1.4%
	1.4%
	1.4%
	1.4%

OS Version:

Windows 10	87.5%
Windows 7	11.1%
Windows 8.1	1.4%

Analysis

PE Info:

Subsystem:	Native
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000000010000
Entry Address:	0x002c0f2c

PE Sections:

Name	Size of data	MD5
.text	0	d41d8cd98f00b204e9800998ecf8427e
.rdata	0	d41d8cd98f00b204e9800998ecf8427e
.data	0	d41d8cd98f00b204e9800998ecf8427e
.pdata	0	d41d8cd98f00b204e9800998ecf8427e
INIT	0	d41d8cd98f00b204e9800998ecf8427e
.data0	0	d41d8cd98f00b204e9800998ecf8427e
.data1	2539008	893f58d9f0cb180a2487cfc64a933862
.reloc	512	bbf21decf1315ae1b00a42269c9c7a3a

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for ZQbr4f.sys

copyright for information about ZQbr4f.sys