How to remove drwtgwi
drwtgwi
The module drwtgwi has been detected as Trojan.SmokeLoader
File Details
| Product Name: | Circuza |
| MD5: | f5b2792494e44fcf306427423d7cd763 |
| Size: | 283 KB |
| First Published: | 2024-03-11 23:01:18 (a year ago) |
| Latest Published: | 2024-06-29 23:02:12 (11 months ago) |
| Status: | Trojan.SmokeLoader (on last analysis) | |
| Analysis Date: | 2024-06-29 23:02:12 (11 months ago) |
Common Places:
| %appdata% |
| %profile%\onedrive\documentos |
| %mydoc% |
Geography:
| 33.3% | ||
| 33.3% | ||
| 33.3% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x00009b50 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 92672 | 2e0d6a4171fe7529b89f34656bf2a4c1 |
| .data | 163840 | 2c7872a90d2f158ffb6f20bc7456f614 |
| .idata | 3072 | f96f17e509a3e11e1a89aab1dbdb08d9 |
| .jod | 1024 | 0f343b0931126a20f133d67c2b018a3b |
| .rsrc | 28160 | d13685dbf48533bcbc7cbb0249e16f2a |
More information:
Download GridinSoft
Anti-Malware - Removal tool for drwtgwi
