How to remove expressvpn_4038552156.exe

» File
File Details
Overview
Analysis

expressvpn_4038552156.exe

The module expressvpn_4038552156.exe has been detected as Adware.InstallCore

expressvpn_4038552156.exe

Remove expressvpn_403855215

File Details

Main Info:

Product Name:	Megagis
Company Name:
MD5:	12195b08b56679fc13ad0bc7725ffd0d
Size:	2 MB
First Published:	2020-05-26 16:29:22 (5 years ago)
Latest Published:	2021-01-12 22:05:35 (4 years ago)

Analysis:

Status:	Adware.InstallCore (on last analysis)
Analysis Date:	2021-01-12 22:05:35 (4 years ago)

Overview

Digital Signature

Signed By:	BULLY UNITY LTD
Status:	Valid

Common Places:

%sysdrive%\نسخه سي\downloads

%profile%

Geography:

	50.0%
	50.0%

OS Version:

Windows 10	50.0%
Windows 7	50.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x000113bc

PE Sections:

Name	Size of data	MD5
.text	61952	fcc8b1d3b02127b6f1cfa2a1c6459b80
.itext	3072	f2607d15218087d0491c9c152d3e07d7
.data	3584	da9cb156b6104ba552cb70804b8a50a3
.bss	0	00000000000000000000000000000000
.idata	3584	93d91a2b90e60bd758fc0c4908856ae1
.tls	0	00000000000000000000000000000000
.rdata	512	3dffc444ccc131c9dcee18db49ee6403
.rsrc	45568	1f9b189f44ed5dfdda2430b1813c9f91

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for expressvpn_4038552156.exe

copyright for information about expressvpn_4038552156.exe