How to remove native_host.exe
- File Details
- Overview
- Analysis
native_host.exe
The module native_host.exe has been detected as PUP.Browser
File Details
| MD5: |
8e1f3c57606d196d879a7536a9b29a97 |
| Size: |
128 KB |
| First Published: |
2017-12-19 13:08:38 (8 years ago) |
| Latest Published: |
2022-10-18 23:58:32 (3 years ago) |
| Status: |
PUP.Browser (on last analysis) |
|
| Analysis Date: |
2022-10-18 23:58:32 (3 years ago) |
Overview
| %localappdata%\elements browser\application |
| %profile%\дминистратор\local settings\application data\elements browser\application |
| %profile%\dmin\local settings\application data\elements browser\application |
| %sysdrive%\windows.old\users\sn198_000\appdata\local\elements browser\application |
| %sysdrive%\vtroot\harddiskvolume4\users\user\appdata\local\elements browser\application |
| %sysdrive%\$recycle.bin\s-1-5-21-3565820204-3969865200-2483102261-1000\$rbfcr40 |
| %sysdrive%\windows.old\users\zerow\appdata\local\elements browser\application |
| %localappdata%\elements browser\application |
| %localappdata%\elements browser\application |
| %localappdata%\elements browser\application |
|
66.3% |
|
|
19.7% |
|
|
5.4% |
|
|
3.8% |
|
|
1.0% |
|
|
0.6% |
|
|
0.6% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
| Windows 10 |
56.3% |
|
| Windows 7 |
31.0% |
|
| Windows 8.1 |
6.6% |
|
| Windows 8 |
4.4% |
|
| Windows XP |
0.6% |
|
| Windows Server 2008 R2 |
0.3% |
|
| Windows Server 2012 R2 |
0.3% |
|
| Windows Server 2008 |
0.3% |
|
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000069e2 |
| Name |
Size of data |
MD5 |
| .text |
77824 |
51d3fcf426fe8a1cd88270041ed084b2 |
| .rdata |
29184 |
810aa585e8abd84efd32c051a9086b43 |
| .data |
5632 |
97b701fadef9d044a918e3e89c59f7d6 |
| .rsrc |
1024 |
df7781092ec9398cf1a089c86bd82c33 |
| .reloc |
5632 |
35d001c9bc0136347453c906d02203bb |
