How to remove p2pzhongsgou8.0.2@81_425245.ex.exe

» File
File Details
Overview
Analysis

p2pzhongsgou8.0.2@81_425245.ex.exe

The module p2pzhongsgou8.0.2@81_425245.ex.exe has been detected as Adware.Downloader

p2pzhongsgou8.0.2@81_425245.ex.exe

Remove p2pzhongsgou8.0.2@81

File Details

Main Info:

Product Name:	downloader
MD5:	dcf2047f5e3d843fd77b55b291d231b4
Size:	772 KB
First Published:	2017-11-02 14:10:33 (7 years ago)
Latest Published:	2018-08-22 16:13:14 (6 years ago)

Analysis:

Status:	Adware.Downloader (on last analysis)
Analysis Date:	2018-08-22 16:13:14 (6 years ago)

Overview

Digital Signature

Signed By:	Hefei Lewei Information Technology Co.,Ltd.
Status:	Valid

Common Places:

%sysdrive%\malware\dima\09,06,2016

%profile%\inxp\application data\idm\dwnldata\winxp

%sysdrive%\malware\.sesi

%sysdrive%\malware

File Names:

5089358389_8085788153_attachment; filename=_Y109@68_18598.exe_.exe.exe

p2pzhongsgou8.0.2@81_425245.ex.exe

Geography:

	97.4%
	2.6%

OS Version:

Windows 10	97.4%
Windows XP	2.6%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x000256cb

PE Sections:

Name	Size of data	MD5
.text	252416	c0b2d899157ad17131cb275974d72c2d
.rdata	60416	427df29e0e2f9852ab39ee522b25ca2e
.data	421888	1a412af31aee00e011a9614e528de5fa
.rsrc	25088	533b72fcad40186f80029aa32828c779
.reloc	12800	9eb88e5f2c80e2bf3ef4f8b562c16072

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for p2pzhongsgou8.0.2@81_425245.ex.exe

copyright for information about p2pzhongsgou8.0.2@81_425245.ex.exe