How to remove api32.exe
api32.exe
The module api32.exe has been detected as Trojan.Downloader
File Details
| Product Name: | ScheduleEventAction |
| Company Name: | Lenovo Group Ltd. |
| MD5: | a1c86fd75ebd0c617febc8116384a5c4 |
| Size: | 390 KB |
| First Published: | 2022-01-03 21:41:54 (3 years ago) |
| Latest Published: | 2022-01-03 21:41:54 (3 years ago) |
| Status: | Trojan.Downloader (on last analysis) | |
| Analysis Date: | 2022-01-03 21:41:54 (3 years ago) |
Overview
| Signed By: | Exodus Movement Inc |
| Status: | Invalid (digital signature could be stolen or file could be patched) |
Common Places:
| %temp% |
Geography:
| 100.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x000072be |
.NET Info:
| MVID: | 37afc80c-5eb1-438a-adb9-fc1b1745009c |
| Typelib ID: | 02b3b7bd-9a4a-4b14-9742-b18925249ed4 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 21504 | 2bb76f44ac3f0d05647b822c60e49d04 |
| .rsrc | 372736 | 3002e6561f40458156981360ee74d081 |
| .reloc | 512 | a56cf0857e6e0f161426ceda81b8896e |
More information:
Download GridinSoft
Anti-Malware - Removal tool for api32.exe
