How to remove irv82ks9b5lgo.sys
- File Details
- Overview
- Analysis
irv82ks9b5lgo.sys
The module irv82ks9b5lgo.sys has been detected as Trojan.Agent
File Details
| MD5: |
52428a7e0cd73547095f99e227195b89 |
| Size: |
1 MB |
| First Published: |
2020-11-19 05:57:29 (4 years ago) |
| Latest Published: |
2022-09-06 23:46:37 (3 years ago) |
| Status: |
Trojan.Agent (on last analysis) |
|
| Analysis Date: |
2022-09-06 23:46:37 (3 years ago) |
Overview
| %appdata% |
| %localappdata% |
| %appdata%\microsoft\windows |
| %commonprograms% |
| %localappdata%\microsoft\windows\burn |
| %profile% |
| %appdata%\microsoft\windows |
| %localappdata%\microsoft\windows\burn |
| %mydoc% |
| %desktop%\c\users\om |
|
20.0% |
|
|
20.0% |
|
|
20.0% |
|
|
10.0% |
|
|
10.0% |
|
|
10.0% |
|
|
10.0% |
|
| Windows 7 |
80.0% |
|
| Windows 10 |
20.0% |
|
Analysis
| Subsystem: |
Native |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00010000 |
| Entry Address: |
0x002f6480 |
| Name |
Size of data |
MD5 |
| .text |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| .rdata |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| .data |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| INIT |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| .data0 |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| .data1 |
1543680 |
2acab406eb16a72d5b174d04f4ea717f |
| .reloc |
512 |
aa585273e2c9bc6218f5157d1e93dfea |
