Information about pokki.exe.vir
- File Details
- Overview
- Analysis
pokki.exe.vir
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
55abcad1b7c8af52b7fb51d0e906443e |
| Size: |
7 MB |
| First Published: |
2017-05-27 13:05:36 (8 years ago) |
| Latest Published: |
2021-02-17 04:04:23 (4 years ago) |
| Status: |
Undefined (on last analysis) |
|
| Analysis Date: |
2021-02-17 04:04:23 (4 years ago) |
Overview
| Signed By: |
Pokki |
| Status: |
Valid |
| %localappdata%\pokki\engine |
| %sysdrive%\adwcleaner\quarantine\files\tydrktckkjouwqpulswmkaqztrremthy\engine |
| %localappdata%\pokki\engine-old |
| %localappdata%\pokki |
| %sysdrive%\windows.old\users\default\appdata\local\pokki |
| %sysdrive%\adwcleaner\quarantine\fraqbc8wsa |
| %sysdrive%\adwcleaner\quarantine\c\users\frank\appdata\local\pokki |
| %localappdata%\pokki |
| %localappdata%\pokki |
| %localappdata%\pokki |
| Thailand |
91.6% |
|
| Iran |
2.6% |
|
| Canada |
1.6% |
|
| Poland |
1.0% |
|
| Hong Kong |
0.5% |
|
| Taiwan |
0.5% |
|
| Algeria |
0.5% |
|
| Croatia |
0.5% |
|
| Vietnam |
0.5% |
|
| Russia |
0.5% |
|
| Windows 7 |
87.7% |
|
| Windows 8.1 |
6.2% |
|
| Windows 10 |
5.1% |
|
| Windows 8 |
0.5% |
|
| Windows Vista |
0.5% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00398362 |
| Name |
Size of data |
MD5 |
| .text |
5190144 |
b4f0953484cff4b20746082ad2d9f74f |
| .rdata |
898560 |
a8ef491663e16ca8ff5a1e44c68ba81e |
| .data |
128000 |
cc4433c35cf27093fd4864ea51722e07 |
| .tls |
512 |
bf619eac0cdf3f68d496ea9344137e8b |
| .rsrc |
1845760 |
d89a7f883a585adadcbf7cabaef19904 |
| .reloc |
216064 |
8c10e9f75682fae5dc9e7e8078a2486f |
