How to remove registry.exe

» File
File Details
Overview
Analysis

registry.exe

The module registry.exe has been detected as Trojan.Downloader

registry.exe

Remove registry.exe

File Details

Main Info:

MD5:	80a6f9499e666a3657a728384a281583
Size:	268 KB
First Published:	2017-08-20 23:08:00 (8 years ago)
Latest Published:	2025-04-12 23:02:07 (6 months ago)

Analysis:

Status:	Trojan.Downloader (on last analysis)
Analysis Date:	2025-04-12 23:02:07 (6 months ago)

Common Places:

%programfiles%\freeime

%programfiles%

%programfiles%

%programfiles%

%programfiles%

%programfiles%

%programfiles%

%programfiles%

%windir%\es4\programfiles7zpkgs\freeime.7z

Geography:

	76.2%
	9.5%
	9.5%
	4.8%

OS Version:

Windows 7	44.4%
Windows XP	33.3%
Windows 10	16.7%
Windows 8.1	5.6%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0001a66e

PE Sections:

Name	Size of data	MD5
.text	196608	fbd3b9ca9f86c275660dc15f23296c7a
.rdata	57344	80ab7b28652335013576ab85b494d1de
.data	12288	fd5925aa94a330051ccaf1bcc4d70e85
.rsrc	4096	06599b41dd13dfedd654468a93d008b7

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for registry.exe

copyright for information about registry.exe