How to remove poobserver.exe
- File Details
- Overview
- Analysis
poobserver.exe
The module poobserver.exe has been detected as Risk.Downloader
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
532d455761592639267a9d0a4e5bd47a |
| Size: |
441 KB |
| First Published: |
2025-07-21 23:01:46 (5 months ago) |
| Latest Published: |
2025-08-04 23:00:59 (4 months ago) |
| Status: |
Risk.Downloader (on last analysis) |
|
| Analysis Date: |
2025-08-04 23:00:59 (4 months ago) |
| %commonappdata% |
| %commonappdata% |
| %commonappdata% |
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000140000000 |
| Entry Address: |
0x00028b74 |
| Name |
Size of data |
MD5 |
| .text |
327680 |
526b0b17eaaedbae63dda5bcdae588a8 |
| .rdata |
95744 |
4a02454a125ee220f534ba0683ee49fb |
| .data |
8192 |
5f56e4dba592f08322c1fecaafab6624 |
| .pdata |
14336 |
2d56994fb5231cbde6ad9e73e49673cb |
| _RDATA |
512 |
de1196bf6353260358107d5474d387f1 |
| .rsrc |
1536 |
561dee51fa735771b4fa5e9841904658 |
| .reloc |
3072 |
2f92bf71df60595aef87ce246ae23440 |
