How to remove new_chedot.exe
- File Details
- Overview
- Analysis
new_chedot.exe
The module new_chedot.exe has been detected as PUP.Gen
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
fac6ae5b4d95d633286710b3722266e0 |
| Size: |
1 MB |
| First Published: |
2017-05-25 17:03:51 (7 years ago) |
| Latest Published: |
2018-04-24 11:07:17 (6 years ago) |
| Status: |
PUP.Gen (on last analysis) |
|
| Analysis Date: |
2018-04-24 11:07:17 (6 years ago) |
Overview
| %localappdata%\chedot\application |
| %localappdata%\chedot\temp\source5116_24560\chrome-bin |
| %localappdata%\chedot\temp\scoped_dir5448_14968 |
| %localappdata%\chedot\temp\scoped_dir5284_11673 |
| %localappdata%\chedot\temp\scoped_dir9052_13792 |
| %localappdata%\chedot\temp\scoped_dir4904_31211 |
| %localappdata%\chedot\temp\scoped_dir24220_5572 |
| %localappdata%\chedot |
| %localappdata%\chedot\temp |
| chedot.exe |
| new_chedot.exe |
| chedot.exe.quarantined |
| old_chedot.exe |
|
37.0% |
|
|
17.3% |
|
|
7.4% |
|
|
7.4% |
|
|
6.2% |
|
|
4.9% |
|
|
4.9% |
|
|
3.7% |
|
|
3.7% |
|
|
2.5% |
|
|
2.5% |
|
|
1.2% |
|
|
1.2% |
|
| Windows 7 |
57.3% |
|
| Windows 10 |
29.2% |
|
| Windows 8.1 |
10.1% |
|
| Windows 8 |
3.4% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0004ab00 |
| Name |
Size of data |
MD5 |
| .text |
539648 |
9e2499ae3a50238189a55d7b40e04de9 |
| .rdata |
177152 |
6a559b119984a292ca11e5107bd8d4d1 |
| .data |
4096 |
47e43a06a3225d37fdd7a92aa6dc5778 |
| .didat |
512 |
aad3b992a1826fb4330fe69c086fa4fc |
| .tls |
512 |
bf619eac0cdf3f68d496ea9344137e8b |
| .rsrc |
398336 |
9e58639dcd7318a8518cc409aed20cc0 |
| .reloc |
22016 |
e6264dcc1f298c51ec0c99f8d466c41f |
