How to remove nekopara_vol1.exe

» File
File Details
Overview
Analysis

nekopara_vol1.exe

The module nekopara_vol1.exe has been detected as Trojan.Downloader

nekopara_vol1.exe

Remove nekopara_vol1.exe

File Details

Main Info:

Product Name:	TVP(KIRIKIRI) Z core / Scripting Platform for Win32
MD5:	193d71f2d666d5d16a5d981ec1a512ad
Size:	4 MB
First Published:	2024-05-09 23:01:58 (2 years ago)
Latest Published:	2024-05-09 23:01:58 (2 years ago)

Analysis:

Status:	Trojan.Downloader (on last analysis)
Analysis Date:	2024-05-09 23:01:58 (2 years ago)

Common Places:

%sysdrive%\eroge\nekopara collection

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0023b053

PE Sections:

Name	Size of data	MD5
.text	2873344	e0d6228ec29ca69059705a7bcbc3a40b
.adata	1536	829658b5dc4f0fcd5c975d52f9ec439e
.rdata	969216	f5799f76ca9877ae67f47e3f74772743
.data	41472	63c14cb47c35c30921d01dad7a0b4241
.rsrc	234496	c0bcfed1c756202b21d8acec6dac94c2
.reloc	307712	13361c06c0a7dacba2936ab3436d1da7

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for nekopara_vol1.exe

copyright for information about nekopara_vol1.exe