Information about roboot64.exe

roboot64.exe

File Details

Product Name:

RCP
MD5: 2bea1e558fb94d19f9028d41a47c1e33
Size: 19 KB
First Published: 2017-05-21 18:09:05 (6 years ago)
Latest Published: 2023-11-10 23:11:56 (5 months ago)
Status: Undefined (on last analysis)
Analysis Date: 2023-11-10 23:11:56 (5 months ago)

Overview

Signed By: Systweak Software
Status: Valid

Common Places:

%windir%\system32
%sysdrive%\$recycle.bin\s-1-5-21-3201979358-1756637679-3000451506-1000\$r57hnxx\quarantine\c98bi89qtp
%system%
%sysdrive%\adwcleaner\quarantine
%sysdrive%\adwcleaner\quarantine\c\windows
%system%
%system%
%system%
%system%
%system%

Geography:

15.7%
10.0%
7.1%
5.7%
5.7%
5.7%
5.7%
4.3%
4.3%
4.3%
2.9%
2.9%
2.9%
2.9%
1.4%
1.4%
1.4%
1.4%
1.4%
1.4%
1.4%
1.4%
1.4%
1.4%
1.4%
1.4%
1.4%
1.4%

OS Version:

Windows 7 55.7%
Windows 10 30.0%
Windows 8.1 11.4%
Windows 8 2.9%

Analysis

Subsystem: Native
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000100000000
Entry Address: 0x0000245c

PE Sections:

Name Size of data MD5
.text 9728 dcae7e9be494d8231f0bb3e4ecd9d69a
.data 512 043c46095689123e1f5be96c109c2f46
.pdata 512 2a98ac2506602473fbcca61ed63e2328
.rsrc 1536 61803dc95a85a96c293c93b8ccb5ac00
.reloc 512 4c69442f94342f01c9eecc224c99f9b1

More information:

Search on Virustotal
copyright for information about roboot64.exe