How to remove rundll32mgr.exe
- File Details
- Overview
- Analysis
rundll32mgr.exe
The module rundll32mgr.exe has been detected as Trojan.Agent
File Details
| Company Name: |
|
| MD5: |
a8245f71e4e4aff10e574300abd2bcc2 |
| Size: |
354 KB |
| First Published: |
2017-05-28 12:01:51 (6 years ago) |
| Latest Published: |
2021-01-10 11:22:20 (3 years ago) |
| Status: |
Trojan.Agent (on last analysis) |
|
| Analysis Date: |
2021-01-10 11:22:20 (3 years ago) |
| %programs%\startup |
| %programfiles%\nhatcuongsoft\proerp |
| %programfiles%\microsoft |
| %programfiles%\droid4x |
| %programfiles%\google\chrome\application |
| %programfiles%\etcrbtbi |
| %localappdata%\temp |
| %localappdata%\s-1-5-31-1286970278978-5713669491-166975984-320\rotinom\recycler\s-5-5-57-2128253284-0146111087-426580867-6241 |
| %desktop%\rodrigo\recycler |
| %programfiles%\iobit\driver booster |
| nnnurpsn.exe |
| proerpsrvsrvsrvsrvsrvsrvsrvsrvsrvmgr.exe |
| desktoplayerSrvSrvmgr.exe |
| proerpsrvsrvsrvsrvsrvsrvsrvmgr.exe |
| proerpsrvsrvsrvsrvsrvsrvsrvSrvmgr.exe |
| proerpsrvsrvsrvsrvsrvmgr.exe |
| proerpsrvsrvsrvsrvsrvsrvmgr.exe |
| proerpsrvsrvsrvmgr.exe |
| droid4xservicesrvsrvmgr.exe |
| desktoplayerSrvmgr.exe |
| proerpsrvSrvmgr.exe |
| desktoplayermgr.exe |
| proerpsrvmgr.exe |
| chromemgr.exe |
| proerpsrvsrvsrvSrvmgr.exe |
| Droid4XPopupsmgr.exe |
| nlvfugnl.exe |
| svchost.exe |
| tbmglwng.exe |
| jRGpVCPc.exe |
| JSPGpJPo.exe |
| VvgylRSL.exe |
| mHysTiJg.exe |
| UDkobuyv.exe |
| WJYQQLIP.exe |
| iHIAJuFo.exe |
| xFUKZmFs.exe |
| MlLqtmAc.exe |
| EZlKALbY.exe |
| HPZVIEiO.exe |
| UMhnJACn.exe |
| MAoOUJvo.exe |
| CgOxaaCw.exe |
| MSoLdKHm.exe |
| bNCEHfle.exe |
| PERIueFg.exe |
| nkIJUUVQ.exe |
| MLwEdHhc.exe |
| DmTiihbG.exe |
| OpKAHVeE.exe |
| VFlWgnOP.exe |
| gnsOYoEp.exe |
| avBDBjZg.exe |
| XrqSdaAt.exe |
| IpYmPtcD.exe |
| tduULiSx.exe |
| jxTTLfjX.exe |
| Schedulermgr.exe |
| slimjetmgr.exe |
| xbpwabid.exe |
| Vpnmgr.exe |
| IEMonitormgr.exe |
| snuvcdsmmgr.exe |
| EvernoteClippermgr.exe |
| Appmgr.exe |
| PIconStartupmgr.exe |
| UltraViewer_Desktopmgr.exe |
| dcomchangemgr.exe |
| DCSHelpermgr.exe |
| DriverBoostermgr.exe |
| IEXPLOREmgr.exe |
| 4G_Servermgr.exe |
| vsnp2uvcmgr.exe |
| GoogleUpdatemgr.exe |
| IDManmgr.exe |
| idmBrokermgr.exe |
| UIExecmgr.exe |
| Skypemgr.exe |
| spoolsvmgr.exe |
| PluginAdminExecmgr.exe |
| BBtalkmgr.exe |
| GarenaTalkLoadermgr.exe |
| UpdateManagermgr.exe |
| LoLmgr.exe |
| UpdateExmgr.exe |
| League of Legendsmgr.exe |
| GarenaMessengermgr.exe |
| LOLClientmgr.exe |
| Groundmgr.exe |
| Flash_toolmgr.exe |
| FlashToolmgr.exe |
| patchmgr.exe |
| Keygenmgr.exe |
| Miracle Box_Cracked 2.58mgr.exe |
| rllgsduj.exe |
| kbdmgr.exe |
| PotPlayerMinimgr.exe |
| cnqmgr.exe |
| DllHostmgr.exe |
| SVPMgrmgr.exe |
| kvpncsvcmgr.exe |
| $RD5NV23.exe |
| SamsungToolPROmgr.exe |
| AndroidMTK_Avengersmgr.exe |
| Infinity Best Nokia By SAHILmgr.exe |
| Photoshopmgr.exe |
| Patchmgr.exe |
| eveedvxw.exe |
| A0038420.exe |
| A0037237.exe |
| A0036052.exe |
| A0038422.exe |
| A0036009.exe |
| A0036201.exe |
| A0038475.exe |
| A0038439.exe |
| A0038421.exe |
| A0035921.exe |
| A0037238.exe |
| A0035916.exe |
| A0036202.exe |
| A0036183.exe |
| A0036053.exe |
| A0038441.exe |
| A0038497.exe |
| A0036182.exe |
| A0036181.exe |
| A0038436.exe |
| A0036020.exe |
| A0038498.exe |
| A0035970.exe |
| Explorermgr.exe |
| A0036200.exe |
| A0038474.exe |
| A0038440.exe |
| A0035969.exe |
| A0038435.exe |
| A0036014.exe |
| A0036019.exe |
| A0035968.exe |
| plugin_hostmgr.exe |
| uxlnwanc.exe |
| cmalwrco.exe |
| UhJXKUeV.exe |
| arZnabFl.exe |
| NDOKcmre.exe |
| wpqdywjw.exe |
| rukvlrvc.exe |
| nyedbfsl.exe |
| xxjmcqlx.exe.Startup |
| MsiExecmgr.exe |
| Infinity Best Nokia By M.Waqas Qamarmgr.exe |
| hyomefbx.exe |
| adbmgr.exe |
| 7zmgr.exe |
| fastbootmgr.exe |
| QSaharaServermgr.exe |
| Setupmgr.exe |
| ulsouvnd.exe |
| rundll32mgr.exe |
|
60.5% |
|
|
22.2% |
|
|
3.4% |
|
|
3.2% |
|
|
2.3% |
|
|
1.6% |
|
|
1.5% |
|
|
1.3% |
|
|
1.0% |
|
|
0.6% |
|
|
0.5% |
|
|
0.3% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
|
0.1% |
|
| Windows 7 |
96.4% |
|
| Windows XP |
2.9% |
|
| Windows 10 |
0.8% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00001000 |
| Name |
Size of data |
MD5 |
| .text |
2048 |
d923bcd038a517d6c55dd4b32d91aa00 |
| .rdata |
2048 |
a99571fc5348ba72e7bcfa9f3172b25b |
| .data |
89088 |
094065f7c38c94af61214611179ecb37 |
| .rsrc |
13312 |
456709dde1c09d9c85e562dabc1d8e76 |
| .reloc |
72704 |
50b1503903e92eebddb24e57eec2427b |
| .text |
182784 |
804d1955d74a12f8f7f001687d813c8d |
