How to remove nacl64.exe
nacl64.exe
The module nacl64.exe has been detected as PUP.MailRu
File Details
| Product Name: | Go! |
| Company Name: | Mail.Ru |
| MD5: | 3a0742543433e57901f9fc886c61e972 |
| Size: | 6 MB |
| First Published: | 2017-12-10 11:08:26 (8 years ago) |
| Latest Published: | 2021-01-09 18:23:54 (4 years ago) |
| Status: | PUP.MailRu (on last analysis) | |
| Analysis Date: | 2021-01-09 18:23:54 (4 years ago) |
Overview
| Signed By: | LLC Mail.Ru |
| Status: | Valid |
Common Places:
| %localappdata%\go!\application |
| %system%\config\systemprofile\appdata\local\go!\application |
| %sysdrive%\$recycle.bin\s-1-5-21-2596977023-3061757637-3725599512-1000\$rg9s4a1\application |
| %sysdrive% |
| %sysdrive%\сергейдом-пк\backup set 2018-01-30 195644\backup files 2018-01-30 195644\backup files 13.zip\c\users\сергей дом\appdata\local\go!\application |
| %sysdrive%\save_20180209\users\user\appdata\local\go!\application |
| %localappdata%\go!\application\58.2.3029.31\installer\chrome.7z\chrome-bin |
| %sysdrive%\илья-пк\backup set 2018-02-11 190012\backup files 2018-02-11 190012\backup files 6.zip\c\users\илья\appdata\local\go!\application |
| %sysdrive%\илья-пк\backup set 2017-12-18 080633\backup files 2018-01-22 090410\backup files 1.zip\c\users\илья\appdata\local\go!\application |
| %sysdrive%\samsung\backup set 2017-12-13 135143\backup files 2018-03-15 103352\backup files 38.zip\c\users\admin\appdata\local\go!\application |
Geography:
| 71.1% | ||
| 5.1% | ||
| 4.3% | ||
| 4.3% | ||
| 2.0% | ||
| 2.0% | ||
| 1.6% | ||
| 1.6% | ||
| 1.6% | ||
| 1.2% | ||
| 1.2% | ||
| 1.2% | ||
| 0.8% | ||
| 0.4% | ||
| 0.4% | ||
| 0.4% | ||
| 0.4% | ||
| 0.4% | ||
| 0.4% |
OS Version:
| Windows 10 | 51.8% | |
| Windows 7 | 37.3% | |
| Windows 8.1 | 9.4% | |
| Windows 8 | 1.6% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x003e00a0 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 4259840 | 0278fa1f37431de51c6296e1d92e836c |
| .rdata | 1774592 | 1e29b7ef6642aed1b68fb0cd05704914 |
| .data | 17408 | 590c827feea97965ada17ecb6dc2c7df |
| .pdata | 239616 | f5d88d4b3315f20ef17d2d25800e0348 |
| .tls | 512 | 6b6111c5f7c4ca92b83ef929bb814047 |
| _RDATA | 33280 | ae12ee5339b4d5233eddd20d918b0218 |
| .rsrc | 53248 | dbba1863bfbccfb722c1cd646559e969 |
| .reloc | 24064 | d23855d8d9d64149caeaa07b019573b2 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for nacl64.exe
