Information about roboot64.exe

» File
File Details
Overview
Analysis

roboot64.exe

File Details

Main Info:

Product Name:	RCP
MD5:	2bea1e558fb94d19f9028d41a47c1e33
Size:	19 KB
First Published:	2017-05-21 18:09:05 (8 years ago)
Latest Published:	2023-11-10 23:11:56 (2 years ago)

Analysis:

Status:	Undefined (on last analysis)
Analysis Date:	2023-11-10 23:11:56 (2 years ago)

Overview

Digital Signature

Signed By:	Systweak Software
Status:	Valid

Common Places:

%windir%\system32

%sysdrive%\$recycle.bin\s-1-5-21-3201979358-1756637679-3000451506-1000\$r57hnxx\quarantine\c98bi89qtp

%system%

%sysdrive%\adwcleaner\quarantine

%sysdrive%\adwcleaner\quarantine\c\windows

%system%

%system%

%system%

%system%

%system%

Geography:

Turkey	15.7%
Argentina	10.0%
Slovenia	7.1%
Taiwan	5.7%
Thailand	5.7%
Vietnam	5.7%
Poland	5.7%
Italy	4.3%
Ukraine	4.3%
United States	4.3%
Chile	2.9%
South Korea	2.9%
Japan	2.9%
Lithuania	2.9%
Moldova	1.4%
Azerbaijan	1.4%
Czech Republic	1.4%
Spain	1.4%
Indonesia	1.4%
Iran	1.4%
El Salvador	1.4%
Belarus	1.4%
Jordan	1.4%
South Africa	1.4%
Malaysia	1.4%
Canada	1.4%
Germany	1.4%
Israel	1.4%

OS Version:

Windows 7	55.7%
Windows 10	30.0%
Windows 8.1	11.4%
Windows 8	2.9%

Analysis

PE Info:

Subsystem:	Native
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000100000000
Entry Address:	0x0000245c

PE Sections:

Name	Size of data	MD5
.text	9728	dcae7e9be494d8231f0bb3e4ecd9d69a
.data	512	043c46095689123e1f5be96c109c2f46
.pdata	512	2a98ac2506602473fbcca61ed63e2328
.rsrc	1536	61803dc95a85a96c293c93b8ccb5ac00
.reloc	512	4c69442f94342f01c9eecc224c99f9b1

More information:

Search on Virustotal

copyright for information about roboot64.exe