How to remove loader.exe

loader.exe

The module loader.exe has been detected as Possible Threat

loader.exe
Remove loader.exe

File Details

Product Name:

AutoIt v3 Script
Company Name:

AutoIt Team
MD5: c56b5f0201a3b3de53e561fe76912bfd
Size: 872 KB
First Published: 2018-06-09 17:08:15 (7 years ago)
Latest Published: 2025-07-11 23:01:32 (2 weeks ago)
Status: Possible Threat (on last analysis)
Analysis Date: 2025-07-11 23:01:32 (2 weeks ago)

Overview

Signed By: AutoIt Consulting Ltd
Status: Valid

Common Places:

%appdata%
%localappdata%
%localappdata%
%programfiles%
%programfiles%
%sysdrive%\báo cáo anh đằng 2016
%programfiles%
%programfiles%
%localappdata%
%programfiles%

File Names:

Firewell.exe
loader.exe
firewell.exe
Loader.exe
AutoIt3.exe
Firewall.exe
autoit3.exe
firewall.exe

Geography:

Spain 12.1%
Brazil 7.8%
United States 4.8%
Indonesia 4.5%
Vietnam 4.5%
Mexico 4.5%
Peru 4.5%
Saudi Arabia 3.7%
India 3.5%
Canada 3.5%
United Kingdom 3.2%
Egypt 3.0%
Russia 2.8%
Argentina 2.6%
Germany 1.9%
Thailand 1.5%
Greece 1.5%
Slovenia 1.5%
Italy 1.3%
Morocco 1.3%
Turkey 1.3%
Israel 1.3%
Romania 1.1%
Serbia 1.1%
Colombia 1.1%
Australia 0.9%
Bulgaria 0.9%
Chile 0.9%
Philippines 0.9%
Pakistan 0.9%
Venezuela 0.9%
Iraq 0.9%
France 0.7%
South Africa 0.7%
Belgium 0.7%
Palestine 0.7%
Hungary 0.7%
Poland 0.6%
Algeria 0.6%
Czech Republic 0.6%
Togo 0.6%
Jordan 0.6%
Cuba 0.6%
Netherlands 0.4%
Singapore 0.4%
Portugal 0.4%
Nepal 0.4%
Iran 0.4%
Yemen 0.4%
Kenya 0.4%
El Salvador 0.4%
Uruguay 0.4%
Malaysia 0.2%
United Arab Emirates 0.2%
Ethiopia 0.2%
Cambodia 0.2%
Taiwan 0.2%
Kuwait 0.2%
Maldives 0.2%
Malta 0.2%
Denmark 0.2%
Bangladesh 0.2%
Burkina Faso 0.2%
China 0.2%
Paraguay 0.2%
Georgia 0.2%
Ukraine 0.2%
Sweden 0.2%
Tunisia 0.2%
South Korea 0.2%

OS Version:

Windows 10 74.3%
Windows 7 19.3%
Windows 8.1 4.5%
Windows 8 1.3%
Windows Vista 0.7%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00027ffa

PE Sections:

Name Size of data MD5
.text 583680 37545704cd94410041e41f7b2d95d901
.rdata 196096 3017eb0c8a06753c1daafc504270d99d
.data 20992 dcfc007fd1d97a1a6dc1794856b6d56b
.rsrc 55296 2f11c470f2b2e8ac0bb71e4649573b37
.reloc 29184 2e5c2ba66d7b9d101e50bc3e18d0b2a5

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for loader.exe
copyright for information about loader.exe
­