How to remove nekopara_vol4.exe

» File
File Details
Overview
Analysis

nekopara_vol4.exe

The module nekopara_vol4.exe has been detected as Trojan.Downloader

nekopara_vol4.exe

Remove nekopara_vol4.exe

File Details

Main Info:

Product Name:	TVP(KIRIKIRI) Z core / Scripting Platform for Win32
MD5:	689e52564150251d6eb1748a3debdff2
Size:	4 MB
First Published:	2024-05-09 23:01:58 (2 years ago)
Latest Published:	2024-05-09 23:01:58 (2 years ago)

Analysis:

Status:	Trojan.Downloader (on last analysis)
Analysis Date:	2024-05-09 23:01:58 (2 years ago)

Common Places:

%sysdrive%\eroge\nekopara collection

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0023b053

PE Sections:

Name	Size of data	MD5
.text	2873344	1e6428883876aa901ecd3f2ccdcbec6d
.adata	1536	829658b5dc4f0fcd5c975d52f9ec439e
.rdata	968704	95559d1e1e8c948151c19ba79aa155c8
.data	41472	91b99cb7f4b95243f68256046c25b14d
.rsrc	234496	d87dbb6463b416f2601257ad459bd4d8
.reloc	307712	d81e063300ff1f88600808bf119cfb04

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for nekopara_vol4.exe

copyright for information about nekopara_vol4.exe