How to remove draw.io.exe
- File Details
- Overview
- Analysis
draw.io.exe
The module draw.io.exe has been detected as Trojan.Heur!
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
1e60afc18af03015fd0d49333c1e7bd6 |
| Size: |
147 MB |
| First Published: |
2023-04-12 23:07:53 (2 years ago) |
| Latest Published: |
2023-04-12 23:07:53 (2 years ago) |
| Status: |
Trojan.Heur! (on last analysis) |
|
| Analysis Date: |
2023-04-12 23:07:53 (2 years ago) |
| %programfiles%\windowsapps\draw.io.draw.iodiagrams_21.1.2.0_x64__1zh33159kp73c |
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000140000000 |
| Entry Address: |
0x03df1dd0 |
| Name |
Size of data |
MD5 |
| .text |
124933632 |
bf5156ce56ccbd6ad48b136864b3526d |
| .rdata |
23342592 |
c36886c87285e0ebcec6db7fdbb0fc13 |
| .data |
737792 |
79e7d96ee97968d27547693e2c0fb1c5 |
| .pdata |
4001280 |
971ff2c8c8a7b8fbd9e28993f320dd2d |
| .00cfg |
512 |
ba2b0c49918ae4c9e1c58ee2a0fb5fc9 |
| .gxfg |
16896 |
de20bccbaa57d2a92479293db53dcf85 |
| .retplne |
512 |
d71c80853fa92a73d6e7b213fb3fe5de |
| .rodata |
4608 |
e5c4f94e5f0f18c0a0c02e29f559138d |
| .tls |
1024 |
3540e4fa9ead49b55e3604a8b9ec6d37 |
| .voltbl |
512 |
a3c251baa31d5e55e2ec45f9019f79e1 |
| CPADinfo |
512 |
60d3ea61d541c9be2e845d2787fb9574 |
| _RDATA |
512 |
12bad61b251fc04bcc6c6fae3a1ffc3c |
| malloc_h |
512 |
5d857ed7e0d45a3873b09a545d96cbff |
| .rsrc |
169472 |
f739472a57585d65cf3ba8ca649a5bd3 |
| .reloc |
990208 |
50e06f37dcc02cf4b38d7c8169e95957 |
