How to remove oinstall.exe
- File Details
- Overview
- Analysis
oinstall.exe
The module oinstall.exe has been detected as Hack.KMS
File Details
| MD5: |
7e58caa6e6c089c1ea4fa69528b4433d |
| Size: |
8 MB |
| First Published: |
2017-05-27 13:06:19 (8 years ago) |
| Latest Published: |
2022-09-30 23:14:25 (3 years ago) |
| Status: |
Hack.KMS (on last analysis) |
|
| Analysis Date: |
2022-09-30 23:14:25 (3 years ago) |
Overview
| Signed By: |
WZT |
| Status: |
Valid |
| %sysdrive%\windows |
| %desktop%\office_2016_iso_16.0.7967.2161_05.16.2017-19.21.40 |
| %profile%\downloads\microsoft office professional plus 2016 + activation tool [danhuk]\disc image\office_2016_x86_x64_en_16.0.6769.2040 |
| %profile%\downloads\[скачатьофис.рф]kms_tools_portable_07_06_2016\kms tools portable 07_06_2016\programs\office 2013-2016 c2r install v5.3 |
| %profile%\downloads\microsoft office professional plus 2016 + activation tool [danhuk]\disc image |
| %profile%\downloads\microsoft office professional plus 2016 + activation tool+turkce dil\disc image |
| %sysdrive%\softwares\microsoft office professional plus 2016 + activation tool [danhuk]\new folder\ms office 2016 |
| %sysdrive%\softwares\microsoft office professional plus 2016 + activation tool [danhuk]\new folder |
| %sysdrive%\_data\_adm tools\windows\активатори\kms tools portable 07_06_2016\programs |
| %sysdrive%\softwares |
| OInstall.exe |
| oinstall.exe |
| OINSTALL.EXE |
| O16 C2R 5.3.exe |
|
10.6% |
|
|
7.3% |
|
|
5.3% |
|
|
5.3% |
|
|
5.3% |
|
|
3.6% |
|
|
3.6% |
|
|
3.3% |
|
|
3.3% |
|
|
3.0% |
|
|
2.6% |
|
|
2.6% |
|
|
2.6% |
|
|
2.3% |
|
|
2.0% |
|
|
2.0% |
|
|
2.0% |
|
|
1.7% |
|
|
1.7% |
|
|
1.7% |
|
|
1.7% |
|
|
1.7% |
|
|
1.7% |
|
|
1.7% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
1.0% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.7% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
| Windows 10 |
68.0% |
|
| Windows 7 |
27.8% |
|
| Windows 8.1 |
2.6% |
|
| Windows 8 |
0.6% |
|
| Windows Server 2016 |
0.6% |
|
| Windows Server 2012 R2 |
0.3% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00001000 |
| Name |
Size of data |
MD5 |
| .code |
128512 |
ce8b4ff3ace468f22acae1840d902bdb |
| .text |
590848 |
701b8d2ea02928a209ed697abdd3fd79 |
| .rdata |
116736 |
df823370d8d0784df5d5bb221ca241de |
| .data |
7847936 |
d5d5b28cc4ebe15c3befde1384882362 |
| .rsrc |
69120 |
e9fb8836bd3e1adc4343368efd6f16e1 |
| .modplug |
0 |
00000000000000000000000000000000 |
