How to remove shimgen.exe
- File Details
- Overview
- Analysis
shimgen.exe
The module shimgen.exe has been detected as Trojan.Downloader
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
5dc7db66cfc46133f8b86e6377ced25e |
| Size: |
202 KB |
| First Published: |
2020-12-31 21:52:58 (4 years ago) |
| Latest Published: |
2024-09-16 23:07:54 (4 months ago) |
| Status: |
Trojan.Downloader (on last analysis) |
|
| Analysis Date: |
2024-09-16 23:07:54 (4 months ago) |
Overview
| %sysdrive%\$recycle.bin\s-1-5-21-3150608216-4241416090-765311833-500\$ryqrt1b |
| %sysdrive%\vtroot\harddiskvolume3\users\administrateur.desktop-hbu7t1h\appdata\local\temp\chocolatey\chocinstall\tools\chocolateyinstall |
| %commonappdata%\chocolatey |
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00031d56 |
| MVID: |
6653fc19-3949-4893-be26-7a1c9c3c100d |
| Typelib ID: |
572d7b63-7273-4ef9-9c73-42c86ba2a85a |
| Name |
Size of data |
MD5 |
| .text |
196096 |
b558709cafd689a1858a1438c2030aab |
| .reloc |
512 |
e57e513754c9deb9bbbbe80dc98d5995 |
| .rsrc |
2560 |
0d7d88138c2035b2f0555f4e1eb7047e |
