How to remove mag2E17.tmp
- File Details
- Overview
- Analysis
mag2E17.tmp
The module mag2E17.tmp has been detected as PUP.MailRu
File Details
| Product Name: |
|
| MD5: |
cccbc1a833d1e4330a40c4cf45a0d3d9 |
| Size: |
49 MB |
| First Published: |
2017-09-24 06:02:04 (6 years ago) |
| Latest Published: |
2019-12-13 21:27:30 (4 years ago) |
| Status: |
PUP.MailRu (on last analysis) |
|
| Analysis Date: |
2019-12-13 21:27:30 (4 years ago) |
Overview
| %localappdata%\temp |
| %sysdrive%\$recycle.bin\s-1-5-21-3778509379-2792458135-3834489654-1002 |
| %profile%\downloads |
| %profile% |
| %sysdrive%\браузеры\mail.ru |
| %temp% |
| %desktop%\different stuff |
| %sysdrive%\$recycle.bin |
| %sysdrive%\chip 2016-17\chip_dvd_11_2017\software |
| %profile%\onedrive |
| mag578C.tmp |
| mag2E17.tmp |
| $RRS14IZ.tmp |
| mag490F.tmp |
| magB1B8.tmp |
| magEC81.tmp |
| magE7AD.tmp |
| magFE22.tmp |
| magC4F9.tmp |
| mag7A33.tmp |
| magC3A0.tmp |
| magAE21.tmp |
| magA716.tmp |
| mag926E.tmp |
| $R0J5X0L.tmp |
| mag14F9.tmp |
| $R86VD4E.tmp |
| mag1DDE.tmp |
| mag8001.tmp |
| mag7EFE.tmp |
| magB19C.tmp |
| mag83C9.tmp |
| magent_rfrset.exe |
| magent_rfrset_notify.exe |
| mag31D9.tmp |
| magent_rfrset_damigo1079.exe |
| $RKBOW22.tmp |
| mag24A6.tmp |
| Windows 10 |
85.3% |
|
| Windows 7 |
14.7% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00008984 |
| Name |
Size of data |
MD5 |
| .text |
128512 |
ce0be6ba68d3b8c45bd853711bd66d2f |
| .rdata |
59392 |
e4cc7ac4e5e3d7a321d3f2062bd77ce0 |
| .data |
3584 |
4a639fa81d72c7157fb0fb6ce78b55bc |
| .tls |
512 |
1f354d76203061bfdd5a53dae48d5435 |
| .rsrc |
51260416 |
089cac2691cb5e9813682fd368ee04ee |
| .reloc |
8704 |
de7e4ba3e4bcbddd2d6a6753a85d42b0 |
