How to remove nacl64.exe
nacl64.exe
The module nacl64.exe has been detected as PUP.MailRu
File Details
| Product Name: | Amigo |
| Company Name: | Mail.Ru |
| MD5: | 01e4c8f899f625adb924168c1f0e975d |
| Size: | 5 MB |
| First Published: | 2018-03-13 12:06:35 (7 years ago) |
| Latest Published: | 2021-01-15 12:23:34 (4 years ago) |
| Status: | PUP.MailRu (on last analysis) | |
| Analysis Date: | 2021-01-15 12:23:34 (4 years ago) |
Overview
| Signed By: | LLC Mail.Ru |
| Status: | Valid |
Common Places:
| %localappdata%\amigo\application |
| %localappdata%\amigo\application\61.0.3163.125\installer\chrome.7z\chrome-bin |
| %sysdrive%\adwcleaner\quarantine\ozyfyz5b6k\application |
| %sysdrive%\adwcleaner\quarantine\ozyfyz5b6k\application\61.0.3163.125\installer\chrome.7z\chrome-bin |
| %sysdrive%\admin-uxddnrhjk\backup set 2018-04-01 190007\backup files 2018-04-01 190007\backup files 6.zip\c\users\игры\appdata\local\amigo\application |
| %sysdrive%\adwcleaner\quarantine\1xvpfvjcrg\application\61.0.3163.125\installer\chrome.7z\chrome-bin |
| %sysdrive%\adwcleaner\quarantine\1xvpfvjcrg\application |
| %sysdrive%\windows.old\users\гена\appdata\local\amigo\application\61.0.3163.125\installer\chrome.7z\chrome-bin |
| %localappdata%\amigo\application |
| %localappdata%\amigo\application |
Geography:
| 74.4% | ||
| 8.1% | ||
| 5.8% | ||
| 3.6% | ||
| 3.6% | ||
| 0.9% | ||
| 0.9% | ||
| 0.4% | ||
| 0.4% | ||
| 0.4% | ||
| 0.4% | ||
| 0.4% | ||
| 0.4% |
OS Version:
| Windows 10 | 48.7% | |
| Windows 7 | 37.1% | |
| Windows 8.1 | 12.1% | |
| Windows 8 | 2.2% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x003a2fd0 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 3996672 | 994e91d33d6f810bcfd92e52267d0c7f |
| _text32 | 137216 | fc4ba9a4788e80ad79569266935f837f |
| .rdata | 1769984 | f4140794ea18fb85a4912737ca7f8eee |
| .data | 19968 | ea1f8b5b83d6c1d62defcdb8c87c6d03 |
| .pdata | 218112 | c3e500bff557bca4a303915ae5c3215a |
| .tls | 512 | 6b6111c5f7c4ca92b83ef929bb814047 |
| _RDATA | 33280 | ae12ee5339b4d5233eddd20d918b0218 |
| .rsrc | 53248 | 8d582294c27d8c31119d6e4a464a005a |
| .reloc | 23040 | 87b7619dedc5b0fe5c62cbbc4ec06e20 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for nacl64.exe
