How to remove oobeldr.exe

» File
File Details
Overview
Analysis

oobeldr.exe

The module oobeldr.exe has been detected as Trojan.RedLine

Remove oobeldr.exe

File Details

Main Info:

Product Name:	Winamp
Company Name:	Nullsoft, Inc.
MD5:	af6e384dfabdad52d43cf8429ad8779c
Size:	4 MB
First Published:	2023-06-30 23:34:46 (2 years ago)
Latest Published:	2025-01-18 23:01:27 (11 months ago)

Analysis:

Status:	Trojan.RedLine (on last analysis)
Analysis Date:	2025-01-18 23:01:27 (11 months ago)

Overview

Digital Signature

Signed By:	Karcher VC 4 Cordless myHome (1.198-620.0)
Status:	Valid

Common Places:

%appdata%\microsoft

%temp%

%appdata%\microsoft

%programfiles%\kmspico

%appdata%\microsoft

%temp%

%appdata%\microsoft

%temp%

%appdata%\microsoft

Geography:

	11.8%
	8.3%
	7.5%
	6.3%
	6.3%
	5.9%
	5.1%
	4.3%
	3.9%
	3.5%
	3.5%
	3.5%
	3.1%
	2.8%
	2.8%
	2.8%
	2.0%
	2.0%
	2.0%
	1.6%
	1.6%
	1.2%
	1.2%
	1.2%
	1.2%
	0.8%
	0.4%
	0.4%
	0.4%
	0.4%
	0.4%
	0.4%
	0.4%
	0.4%
	0.4%
	0.4%

OS Version:

Windows 10	92.5%
Windows 7	6.3%
Windows 8.1	1.2%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x007780c8

PE Sections:

Name	Size of data	MD5
.MPRESS1	4162048	85196a9e5bb84c8aec901dc36393e0ff
.MPRESS2	3584	23fd5bedcbebef397a50bc0c1e24fe23
.rsrc	391168	3362fe7a1fe8373e42cd3fd283556903

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for oobeldr.exe

copyright for information about oobeldr.exe

How to remove oobeldr.exe

oobeldr.exe

The module oobeldr.exe has been detected as Trojan.RedLine

File Details

Main Info:

Winamp

Nullsoft, Inc.

Analysis:

Overview

Digital Signature

Common Places:

Geography:

OS Version:

Analysis

PE Info:

PE Sections:

More information: