How to remove onestart.exe
- File Details
- Overview
- Analysis
onestart.exe
The module onestart.exe has been detected as PUP.OneStart
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
6339f85484cb73d756652603ec9b0cc1 |
| Size: |
3 MB |
| First Published: |
2025-04-09 23:00:22 (5 months ago) |
| Latest Published: |
2025-04-09 23:00:22 (5 months ago) |
| Status: |
PUP.OneStart (on last analysis) |
|
| Analysis Date: |
2025-04-09 23:00:22 (5 months ago) |
Overview
| %localappdata%\onestart.ai\onestart |
| %localappdata%\onestart.ai\onestart |
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000140000000 |
| Entry Address: |
0x001b82c0 |
| Name |
Size of data |
MD5 |
| .text |
2651648 |
79438da0978d840acf03ab15f2b3f68a |
| .rdata |
338944 |
a7df9d356fa4ed34bfa4638d5f571741 |
| .data |
62464 |
2998db79c67d12275ed9911f278b962b |
| .pdata |
63488 |
87ce9ce022d6c2558c440e105012d2d4 |
| .gxfg |
13312 |
0fcbc54c7aad05875f3c432283ace437 |
| .retplne |
512 |
022887b1467ba7c3bd7ed7d98b0a888a |
| .tls |
1024 |
22f2c12f18a56575a3bcd711f2a32b26 |
| CPADinfo |
512 |
60d3ea61d541c9be2e845d2787fb9574 |
| _RDATA |
512 |
ae1f9d57d5642099d676fa31993818d1 |
| malloc_h |
1536 |
69c578be7c27bc2e5c069d87f6f83508 |
| .rsrc |
400384 |
6d35daa46a4ce1aa00f9b9731c40e19a |
| .reloc |
10752 |
34720b9d85a2e9988e5ea676a28e86ac |
