How to remove exma.dll

exma.dll

The module exma.dll has been detected as Trojan.EternalRocks

exma.dll
Remove exma.dll

File Details

MD5: 649b368c52de83e52474a20ce4f83425
Size: 6 KB
First Published: 2017-07-18 23:06:45 (7 years ago)
Latest Published: 2025-05-31 23:03:20 (a month ago)
Status: Trojan.EternalRocks (on last analysis)
Analysis Date: 2025-05-31 23:03:20 (a month ago)

Common Places:

%appdata%\ltdltd61\ea
%appdata%\notifynotify82\ea
%system%\mfen.exe
%windir%\setup\fou
%commonappdata%\rundll
%windir%\system32
%commonappdata%\svhost
%sysdrive%\$recycle.bin\s-1-5-21-2570348591-2767011175-3200952900-1016\$ro0c72t.rar\445\run\specials
%commonappdata%\temp\445.zip\run\specials
%windir%\syswow64

Geography:

39.4%
12.3%
9.1%
8.1%
3.8%
3.5%
3.2%
2.6%
1.7%
1.6%
1.5%
1.3%
0.9%
0.8%
0.7%
0.7%
0.7%
0.6%
0.6%
0.6%
0.4%
0.4%
0.3%
0.3%
0.3%
0.3%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%

OS Version:

Windows 7 86.5%
Windows 10 8.7%
Windows Server 2008 R2 2.3%
Windows 8.1 1.1%
Windows XP 0.8%
Windows Vista 0.3%
Windows Server 2012 R2 0.1%
Windows Web Server 2008 R2 0.1%
Windows Server 2003 0.1%
Windows 8 0.1%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x10000000
Entry Address: 0x000016d3

PE Sections:

Name Size of data MD5
.text 2560 662473e89f83950ec8b95207440b039a
.rdata 1536 e00ba0a97cd80b4c82709093a014b4dc
.data 512 004eddf75ab31481a8e119f3e2a88f18
.reloc 512 80adf2d16b53a31c9d86a3b1cf2cfc29

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for exma.dll
copyright for information about exma.dll