How to remove new_amigo.exe
- File Details
- Overview
- Analysis
new_amigo.exe
The module new_amigo.exe has been detected as Hijack.Explorer
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
2435a20772345d5d4040df2e67e192e9 |
| Size: |
1 MB |
| First Published: |
2018-03-12 11:04:32 (7 years ago) |
| Latest Published: |
2021-01-15 11:23:57 (4 years ago) |
| Status: |
Hijack.Explorer (on last analysis) |
|
| Analysis Date: |
2021-01-15 11:23:57 (4 years ago) |
Overview
| %localappdata%\amigo |
| %localappdata%\amigo\application\61.0.3163.125\installer\chrome.7z |
| %sysdrive%\adwcleaner\quarantine\ozyfyz5b6k\application\61.0.3163.125\installer\chrome.7z |
| %sysdrive%\adwcleaner\quarantine\ozyfyz5b6k |
| %sysdrive%\admin-uxddnrhjk\backup set 2018-04-01 190007\backup files 2018-04-01 190007\backup files 6.zip\c\users\игры\appdata\local\amigo |
| %sysdrive%\adwcleaner\quarantine\1xvpfvjcrg\application\61.0.3163.125\installer\chrome.7z |
| %sysdrive%\windows.old\users\гена\appdata\local\amigo\application\61.0.3163.125\installer\chrome.7z |
| %sysdrive%\adwcleaner\quarantine\1xvpfvjcrg |
| %localappdata%\amigo\temp |
| %sysdrive%\windows.old\users\пк\appdata\local\amigo |
| amigo.exe |
| new_amigo.exe |
| amigo.exe.vir |
| amigo.exe.quarantined |
| old_amigo.exe |
|
69.5% |
|
|
7.4% |
|
|
5.0% |
|
|
4.9% |
|
|
4.5% |
|
|
2.3% |
|
|
2.0% |
|
|
1.6% |
|
|
1.5% |
|
|
0.4% |
|
|
0.2% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
| Windows 7 |
62.4% |
|
| Windows 10 |
28.9% |
|
| Windows 8.1 |
7.1% |
|
| Windows 8 |
1.6% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00066510 |
| Name |
Size of data |
MD5 |
| .text |
688128 |
0fdfffd14183ca8b3e26dc3ee908910c |
| .rdata |
202240 |
20d35b991e7a871284171e89c33d62e7 |
| .data |
6656 |
9ad3925f1f8b262014de0d487f257336 |
| .didat |
512 |
556715f037fb6f19fbdabb490dae837e |
| CPADinfo |
512 |
d273139d7dd4280f40c57791927d34c6 |
| .tls |
512 |
1f354d76203061bfdd5a53dae48d5435 |
| .rsrc |
171520 |
a2c8be2adcf02a62050a9515e54aab3a |
| .reloc |
26624 |
ad2e1a8e3b94a32b324df69d4911536b |
