How to remove ZaxarLoader.EXE
- File Details
- Overview
- Analysis
ZaxarLoader.EXE
The module ZaxarLoader.EXE has been detected as PUP.Gen
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
5889b5b9d35f59d47cb231652cf2b83d |
| Size: |
306 KB |
| First Published: |
2017-07-30 21:05:37 (7 years ago) |
| Latest Published: |
2018-07-28 21:08:52 (6 years ago) |
| Status: |
PUP.Gen (on last analysis) |
|
| Analysis Date: |
2018-07-28 21:08:52 (6 years ago) |
Overview
| %programfiles%\zaxar |
| %sysdrive%\$recycle.bin\s-1-5-21-1250020974-3870281462-641059823-1000\$rdse3um |
| %sysdrive%\adwcleaner\quarantine\fraqbc8wsa |
| %programfiles% |
| %sysdrive%\$recycle.bin\s-1-5-21-3987933637-536107264-3171927535-1001 |
| %sysdrive%\adwcleaner\quarantine |
| %sysdrive%\windows.old.000\program files |
| ZaxarLoader.exe |
| ZaxarLoader.EXE |
| ZaxarLoader.exeold |
| zaxarloader.exe |
|
74.2% |
|
|
16.5% |
|
|
3.1% |
|
|
2.1% |
|
|
2.1% |
|
|
1.0% |
|
|
1.0% |
|
| Windows 10 |
48.0% |
|
| Windows 7 |
40.8% |
|
| Windows 8.1 |
7.1% |
|
| Windows XP |
3.1% |
|
| Windows 8 |
1.0% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0001217b |
| Name |
Size of data |
MD5 |
| .text |
196608 |
f749c7d5956935c7dd9c1bcb7cf32574 |
| .rdata |
73728 |
e4ea3fffe6dbf0193a4294cc6262a093 |
| .data |
4608 |
2a90339e6ea9a19c6529d14cce8b7ad4 |
| .gfids |
1024 |
aebd67d2b0ede23e428598dd96a30a07 |
| .tls |
512 |
1f354d76203061bfdd5a53dae48d5435 |
| .rsrc |
17920 |
a865c2bcd32d02f53a6fc62bd68278c3 |
| .reloc |
12288 |
5b8e925e6dd0aec4f027a298882b350d |
