How to remove dcold.exe
dcold.exe
The module dcold.exe has been detected as Suspicious Object
File Details
| Product Name: | 驱动总裁在线安装程序 |
| Company Name: | SysCeo.com |
| MD5: | 8e2ef355c604451cdd300d204eed80a7 |
| Size: | 1 MB |
| First Published: | 2023-11-28 23:08:23 (a year ago) |
| Latest Published: | 2023-11-28 23:08:23 (a year ago) |
| Status: | Suspicious Object (on last analysis) | |
| Analysis Date: | 2023-11-28 23:08:23 (a year ago) |
Overview
| Signed By: | Jiangmen Eyun Network Co., Ltd. |
| Status: | Valid |
Common Places:
| %windir% |
Geography:
| 100.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x005f6370 |
PE Sections:
| Name | Size of data | MD5 |
| UPX0 | 0 | d41d8cd98f00b204e9800998ecf8427e |
| UPX1 | 1085440 | 80ab3b1ae9136c5b0853c6978ed3b1d6 |
| .rsrc | 104448 | bd800ed9a2b6f594b4012bed0ed59f29 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for dcold.exe
