How to remove remo-recover-windows.exe
- File Details
- Overview
- Analysis
remo-recover-windows.exe
The module remo-recover-windows.exe has been detected as PUP.RemoRecover
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
d1fd543786e36ea434a4bbd805fe2e71 |
| Size: |
30 MB |
| First Published: |
2019-05-21 18:55:29 (6 years ago) |
| Latest Published: |
2021-04-14 20:20:05 (4 years ago) |
| Status: |
PUP.RemoRecover (on last analysis) |
|
| Analysis Date: |
2021-04-14 20:20:05 (4 years ago) |
Overview
| %sysdrive%\azuris downloads |
| %sysdrive%\utils |
| %profile% |
| %sysdrive%\descargas\software windows |
| %profile%\downloads |
| %sysdrive%\sfk\sfk\downloads |
| %sysdrive%\torrent complete |
| %sysdrive%\torrent complete |
| %profile%\downloads |
| %profile%\onedrive\área de trabalho |
|
23.1% |
|
|
23.1% |
|
|
15.4% |
|
|
15.4% |
|
|
7.7% |
|
|
7.7% |
|
|
7.7% |
|
| Windows 10 |
76.9% |
|
| Windows 7 |
23.1% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000117dc |
| Name |
Size of data |
MD5 |
| .text |
62464 |
a33e9ff7181115027d121cd377c28c8f |
| .itext |
4096 |
caec456c18277b579a94c9508daf36ec |
| .data |
3584 |
746954890499546d73dce0e994642192 |
| .bss |
0 |
00000000000000000000000000000000 |
| .idata |
4096 |
e9b9c0328fd9628ad4d6ab8283dcb20e |
| .tls |
0 |
00000000000000000000000000000000 |
| .rdata |
512 |
3dffc444ccc131c9dcee18db49ee6403 |
| .rsrc |
497664 |
385bd9cbc26bc0b7b48611555a45efc2 |
