How to remove new_chedot.exe
- File Details
- Overview
- Analysis
new_chedot.exe
The module new_chedot.exe has been detected as PUP.Gen
File Details
Product Name: |
|
Company Name: |
|
MD5: |
fac6ae5b4d95d633286710b3722266e0 |
Size: |
1 MB |
First Published: |
2017-05-25 17:03:51 (7 years ago) |
Latest Published: |
2018-04-24 11:07:17 (6 years ago) |
Status: |
PUP.Gen (on last analysis) |
|
Analysis Date: |
2018-04-24 11:07:17 (6 years ago) |
Overview
%localappdata%\chedot\application |
%localappdata%\chedot\temp\source5116_24560\chrome-bin |
%localappdata%\chedot\temp\scoped_dir5448_14968 |
%localappdata%\chedot\temp\scoped_dir5284_11673 |
%localappdata%\chedot\temp\scoped_dir9052_13792 |
%localappdata%\chedot\temp\scoped_dir4904_31211 |
%localappdata%\chedot\temp\scoped_dir24220_5572 |
%localappdata%\chedot |
%localappdata%\chedot\temp |
chedot.exe |
new_chedot.exe |
chedot.exe.quarantined |
old_chedot.exe |
|
37.0% |
|
|
17.3% |
|
|
7.4% |
|
|
7.4% |
|
|
6.2% |
|
|
4.9% |
|
|
4.9% |
|
|
3.7% |
|
|
3.7% |
|
|
2.5% |
|
|
2.5% |
|
|
1.2% |
|
|
1.2% |
|
Windows 7 |
57.3% |
|
Windows 10 |
29.2% |
|
Windows 8.1 |
10.1% |
|
Windows 8 |
3.4% |
|
Analysis
Subsystem: |
Windows GUI |
PE Type: |
pe |
OS Bitness: |
32 |
Image Base: |
0x00400000 |
Entry Address: |
0x0004ab00 |
Name |
Size of data |
MD5 |
.text |
539648 |
9e2499ae3a50238189a55d7b40e04de9 |
.rdata |
177152 |
6a559b119984a292ca11e5107bd8d4d1 |
.data |
4096 |
47e43a06a3225d37fdd7a92aa6dc5778 |
.didat |
512 |
aad3b992a1826fb4330fe69c086fa4fc |
.tls |
512 |
bf619eac0cdf3f68d496ea9344137e8b |
.rsrc |
398336 |
9e58639dcd7318a8518cc409aed20cc0 |
.reloc |
22016 |
e6264dcc1f298c51ec0c99f8d466c41f |