How to remove def.exe
def.exe
The module def.exe has been detected as Trojan.Downloader
File Details
| Product Name: | QCE Messenger |
| MD5: | 01ed6b7f7509344c121bc44eefc12889 |
| Size: | 2 MB |
| First Published: | 2024-05-29 23:06:21 (a year ago) |
| Latest Published: | 2024-05-29 23:06:21 (a year ago) |
| Status: | Trojan.Downloader (on last analysis) | |
| Analysis Date: | 2024-05-29 23:06:21 (a year ago) |
Overview
| Signed By: | Jean Lalonde |
| Status: | Invalid (digital signature could be stolen or file could be patched) |
Common Places:
| %temp% |
Geography:
| 100.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x000cdb10 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 910336 | 2cb2cc753efaeec52225167dc88ea647 |
| .rdata | 201728 | fb0119a36e42b52816b67655e3708a59 |
| .data | 20480 | c3f8dbbdb00a1e43a28cdbf0f4c49b64 |
| .pdata | 31744 | 7ad34a269fdb90eb2e3104d81b1922fb |
| text | 9728 | c2225e974b892ae6322728534b6587c5 |
| data | 28672 | 8f4275b626558a8640120f611553e570 |
| .rsrc | 985600 | 4ef9bbe389aa5443adc4aa5c8d703793 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for def.exe
