How to remove lsasecretsview.exe
- File Details
- Overview
- Analysis
lsasecretsview.exe
The module lsasecretsview.exe has been detected as Trojan.Agent
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
1f8c2ab54042dcdfb905d51282235775 |
| Size: |
89 KB |
| First Published: |
2020-01-11 00:49:11 (5 years ago) |
| Latest Published: |
2024-01-23 23:11:00 (2 years ago) |
| Status: |
Trojan.Agent (on last analysis) |
|
| Analysis Date: |
2024-01-23 23:11:00 (2 years ago) |
| %profile%\downloads\nirsoft_package_enc_1.23.9\nirsoft |
| %mydoc%\downloads\windows_repair_toolbox\downloads\nirlauncher\nirsoft |
| %desktop%\nirsoft_package_enc_1.23.10\nirsoft |
| %sysdrive%\$recycle.bin\s-1-5-21-814142685-3074585200-3009549012-1001\$rfn6fej.10\nirsoft |
| %profile%\downloads\nirsoft_package_enc_1.23.10\nirsoft |
| %sysdrive%\00_tools\05_system\tools_nirsoft_package\nirsoft |
| %sysdrive%\00_tools\05_system\_portable\nirsoft_package\nirsoft |
| %profile%\downloads\nirsoft_package_enc_1.23.11\nirsoft |
| %profile%\downloads\nirsoft_package_enc_1.23.11\nirsoft_package_enc_1.23.11.7z\nirsoft |
| %desktop%\utilitarios\nirsoft_package_1.20.11\nirsoft |
|
16.0% |
|
|
10.0% |
|
|
8.0% |
|
|
6.0% |
|
|
4.0% |
|
|
4.0% |
|
|
4.0% |
|
|
4.0% |
|
|
4.0% |
|
|
4.0% |
|
|
4.0% |
|
|
2.0% |
|
|
2.0% |
|
|
2.0% |
|
|
2.0% |
|
|
2.0% |
|
|
2.0% |
|
|
2.0% |
|
|
2.0% |
|
|
2.0% |
|
|
2.0% |
|
|
2.0% |
|
|
2.0% |
|
|
2.0% |
|
|
2.0% |
|
|
2.0% |
|
|
2.0% |
|
| Windows 10 |
68.6% |
|
| Windows 7 |
25.5% |
|
| Windows 8.1 |
5.9% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000140000000 |
| Entry Address: |
0x0000fbe0 |
| Name |
Size of data |
MD5 |
| .text |
61440 |
72e1c6163e4a25aaf757cff1fdf78dfe |
| .rdata |
13824 |
2d5833b8a3701724599c6460b3b0be09 |
| .data |
512 |
feec8d09cc7fb593cdbe6dd484a42408 |
| .pdata |
3072 |
77733da31412bac43f06b6a525e5c27b |
| .rsrc |
11264 |
bac9fd25a6f2d2000e17c71f16ced3e4 |
