How to remove dreamtrips_mix1.exe
- File Details
- Overview
- Analysis
dreamtrips_mix1.exe
The module dreamtrips_mix1.exe has been detected as Trojan.Zpevdo
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
f24cddacf9cb3e0cec9e89a65bd0b2e6 |
| Size: |
1 MB |
| First Published: |
2019-07-04 22:43:13 (6 years ago) |
| Latest Published: |
2022-04-03 23:07:11 (3 years ago) |
| Status: |
Trojan.Zpevdo (on last analysis) |
|
| Analysis Date: |
2022-04-03 23:07:11 (3 years ago) |
| %temp% |
| %temp% |
| %temp% |
| %temp% |
| %temp% |
| %temp% |
| %temp% |
| %temp% |
| %temp% |
| %temp% |
| Thailand |
14.5% |
|
| Argentina |
12.9% |
|
| Philippines |
11.3% |
|
| Greece |
11.3% |
|
| Vietnam |
8.1% |
|
| Indonesia |
6.5% |
|
| Guatemala |
6.5% |
|
| Peru |
4.8% |
|
| Trinidad and Tobago |
4.8% |
|
| India |
4.8% |
|
| Egypt |
3.2% |
|
| Puerto Rico |
1.6% |
|
| Morocco |
1.6% |
|
| Malaysia |
1.6% |
|
| Pakistan |
1.6% |
|
| Iran |
1.6% |
|
| Nepal |
1.6% |
|
| New Zealand |
1.6% |
|
| Windows 7 |
57.1% |
|
| Windows 10 |
39.7% |
|
| Windows 8.1 |
3.2% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0000aad0 |
| Name |
Size of data |
MD5 |
| CODE |
41984 |
49513e676dadfb3919c4b137dd7c6d66 |
| DATA |
1024 |
0a7b48e75f6b6ef4a087528fee0d185c |
| BSS |
0 |
00000000000000000000000000000000 |
| .idata |
2560 |
df5f31e62e05c787fd29eed7071bf556 |
| .tls |
0 |
00000000000000000000000000000000 |
| .rdata |
512 |
14dfa4128117e7f94fe2f8d7dea374a0 |
| .reloc |
0 |
00000000000000000000000000000000 |
| .rsrc |
15360 |
a522d180b9281416f2c7d146f9f7709b |
