How to remove gatherosstate.exe

gatherosstate.exe

The module gatherosstate.exe has been detected as Trojan.Downloader

gatherosstate.exe
Remove gatherosstate.exe

File Details

Product Name:

Microsoft® Windows® Operating System
Company Name:

Microsoft Corporation
MD5: 15ce0753a16dd4f9b9f0f9926dd37c4e
Size: 330 KB
First Published: 2022-09-12 23:26:48 (3 years ago)
Latest Published: 2023-03-21 23:50:10 (3 years ago)
Status: Trojan.Downloader (on last analysis)
Analysis Date: 2023-03-21 23:50:10 (3 years ago)

Common Places:

%sysdrive%\crack of\activate.aio.tools.v3.1.3\bin\actwin10digital\actwin10all
%sysdrive%\crack of\activate.aio.tools.v3.1.3\bin\actwin10digital\actltsbltsc\actltsc2019years38
%windir%\_tempheukms07241341542710
%windir%\_tempheukms07241343225898
%sysdrive%\mas_1.2.zip\separate-files-version\activators\hwid-kms38_activation
%profile%\downloads\mas_1.4 aio activator windows et office.rar\mas_1.4 aio activator windows et office\separate-files-version\activators\hwid-kms38_activation
%windir%\temp
%sysdrive%\backupdownload\activate.aio.tools.v3.1.3 - tuihocit.com\activate.aio.tools.v3.1.3 - tuihocit.com\tuihocit.com.activate.aio.tools.v3.1.3\tuihocit.com.activate.aio.tools.v3.1.3\bin\actwin10digital\actltsbltsc\actltsc2019years38
%sysdrive%\backupdownload\activate-aio-tools-21ak22-com.rar\activate-aio-tools-21ak22-com\bin\actwin10digital\actwin10all
%sysdrive%\backupdownload\activate-aio-tools-21ak22-com\bin\actwin10digital\actwin10all

Geography:

40.0%
15.0%
10.0%
10.0%
5.0%
5.0%
5.0%
5.0%
5.0%

OS Version:

Windows 10 95.2%
Windows 7 4.8%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x0004ce50

PE Sections:

Name Size of data MD5
.text 323072 7ce18b832ba222484f174649a8f42e1a
.data 512 d5304f06511f2af90e7985a7bfb5fe64
.idata 2560 9227250b889bf63f94818dcb15737592
.didat 512 6eafaa24e2d79464c4255ef858822a76
.rsrc 1536 0a815577b8c77c79ff2c37c501c9020b
.reloc 8704 178765ae061915b890737abfeb8096cd

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for gatherosstate.exe
copyright for information about gatherosstate.exe