How to remove _PDFFile.ico
- File Details
- Overview
- Analysis
_PDFFile.ico
The module _PDFFile.ico has been detected as Trojan.Drixed
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
e9490a327462e7cac5f86a0f4e2ce21d |
| Size: |
320 KB |
| First Published: |
2017-06-24 10:06:40 (8 years ago) |
| Latest Published: |
2024-02-15 23:37:11 (2 years ago) |
| Status: |
Trojan.Drixed (on last analysis) |
|
| Analysis Date: |
2024-02-15 23:37:11 (2 years ago) |
| %windir%\installer\{ac76ba86-7ad7-1040-7b44-ac0f074e4100} |
| %windir%\installer\{ac76ba86-1033-ffff-7760-0c0f074e4100} |
| %windir%\installer\{ac76ba86-7ad7-1033-7b44-ac0f074e4100} |
| %windir%\installer\{ac76ba86-7ad7-1049-7b44-ac0f074e4100} |
| %windir%\installer\{ac76ba86-7ad7-1041-7b44-ac0f074e4100} |
| %windir%\installer\{ac76ba86-7ad7-1028-7b44-ac0f074e4100} |
| %windir%\installer\{ac76ba86-7ad7-1036-7b44-ac0f074e4100} |
| %windir%\installer\{ac76ba86-7ad7-1031-7b44-ac0f074e4100} |
| %windir%\installer\{ac76ba86-7ad7-1038-7b44-ac0f074e4100} |
| %windir%\installer\{ac76ba86-7ad7-1045-7b44-ac0f074e4100} |
| PDFFile_8.ico |
| _PDFFile.ico |
| 186677bb.rbf |
| 29fa152b.rbf |
| fc7b1893a7b0bb862036600390f3b984.ico |
| 999c7ca11e1a4b555e85e99c551deb70.ico |
| _PDFFile.ico.quarantined |
| fb69e5b10820e01b73cee5efd6c50eba.ico |
| 2b10cff4a487c142ee40b456cc5df561.ico |
| cad6520416492b7f7b21c8d260af75d8.ico |
| 673e98ce6d16029dd4a7edc55d0e44db.ico |
| 8c132f90f1acb44c0e7e45b10e3a688a.ico |
| PDFFile_8.ico.quarantined |
|
13.9% |
|
|
9.8% |
|
|
6.4% |
|
|
5.8% |
|
|
5.2% |
|
|
4.6% |
|
|
4.6% |
|
|
3.5% |
|
|
2.9% |
|
|
2.9% |
|
|
2.3% |
|
|
2.3% |
|
|
2.3% |
|
|
2.3% |
|
|
2.3% |
|
|
2.3% |
|
|
2.3% |
|
|
1.7% |
|
|
1.7% |
|
|
1.7% |
|
|
1.7% |
|
|
1.7% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
1.2% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
| Windows 10 |
65.5% |
|
| Windows 7 |
29.3% |
|
| Windows 8.1 |
3.4% |
|
| Windows 8 |
1.7% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00001005 |
| Name |
Size of data |
MD5 |
| .text |
16384 |
afb12c47d3be203c0a7aebdc25422cef |
| .rdata |
4096 |
15e13969f0737bb4ec50592b029c02f2 |
| .data |
12288 |
9b57a8510b2e985a48115bbaee120bb5 |
| .rsrc |
290816 |
8d4f80949aede7c79b85c3247e12b6f3 |
