How to remove rpcapd.exe
rpcapd.exe
The module rpcapd.exe has been detected as Trojan.Downloader
File Details
| Product Name: | WinPcap |
| Company Name: | Riverbed Technology, Inc. |
| MD5: | 83a6c2cafe236652d1559640594a0ea8 |
| Size: | 115 KB |
| First Published: | 2021-10-08 20:54:48 (3 years ago) |
| Latest Published: | 2022-01-03 21:29:27 (3 years ago) |
| Status: | Trojan.Downloader (on last analysis) | |
| Analysis Date: | 2022-01-03 21:29:27 (3 years ago) |
Overview
| Signed By: | Riverbed Technology, Inc. |
| Status: | Valid |
Common Places:
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
Geography:
| 16.7% | ||
| 11.1% | ||
| 11.1% | ||
| 5.6% | ||
| 5.6% | ||
| 5.6% | ||
| 5.6% | ||
| 5.6% | ||
| 5.6% | ||
| 5.6% | ||
| 5.6% | ||
| 5.6% | ||
| 5.6% | ||
| 5.6% |
OS Version:
| Windows 10 | 78.9% | |
| Windows 8 | 10.5% | |
| Windows Server 2012 R2 | 5.3% | |
| Windows 7 | 5.3% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x00009025 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 77824 | dd0a0fde158529e75138266a79fece41 |
| .rdata | 16384 | 7771a88f780fbbafc20b50c93e1b6a62 |
| .data | 8192 | 7b625826efb4dc6202381b437e06db6c |
| .rsrc | 4096 | a8de8c9f7f782d2ce3c929337a08a782 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for rpcapd.exe
