How to remove etchCore-0.x64.dll
- File Details
- Overview
- Analysis
etchCore-0.x64.dll
The module etchCore-0.x64.dll has been detected as Trojan.Agent
File Details
| MD5: |
4ff94c163565a38a27cf997ad07b3d69 |
| Size: |
175 KB |
| First Published: |
2017-07-18 23:06:44 (6 years ago) |
| Latest Published: |
2024-03-23 23:02:56 (3 weeks ago) |
| Status: |
Trojan.Agent (on last analysis) |
|
| Analysis Date: |
2024-03-23 23:02:56 (3 weeks ago) |
| %appdata%\ltdltd61\ea |
| %sysdrive%\windows.old\users\toshiba\appdata\local\temp\2510001 |
| %sysdrive%\windows.old\users\toshiba\appdata\local\temp\305576 |
| %sysdrive%\windows.old\users\toshiba\appdata\local\temp\312898 |
| %temp%\59550555 |
| %temp%\21506302 |
| %temp%\7185451 |
| %temp%\12478602 |
| %temp%\452601 |
| %temp%\5340566 |
|
48.0% |
|
|
17.4% |
|
|
5.1% |
|
|
4.5% |
|
|
4.0% |
|
|
3.4% |
|
|
3.3% |
|
|
1.9% |
|
|
1.2% |
|
|
1.1% |
|
|
0.6% |
|
|
0.6% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.5% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
| Windows 7 |
86.6% |
|
| Windows 10 |
5.8% |
|
| Windows Server 2008 R2 |
3.7% |
|
| Windows XP |
2.0% |
|
| Windows 8.1 |
1.1% |
|
| Windows Vista |
0.5% |
|
| Windows Server 2012 R2 |
0.1% |
|
| Windows Web Server 2008 R2 |
0.1% |
|
| Windows 8 |
0.1% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000180000000 |
| Entry Address: |
0x00020394 |
| Name |
Size of data |
MD5 |
| .text |
133120 |
1d174a1928f720a5dd23578994c33088 |
| .rdata |
22528 |
732c16a6238644b8cfcf456b2cbeee69 |
| .data |
15360 |
f6596dd2609e3ac9d1ef027c472fa634 |
| .pdata |
5120 |
eaf63fd51302f12d8a68f3aa8c88c0ae |
| .reloc |
2048 |
292c6bd3587fab28d3100951f37b65d8 |
