How to remove sysproxy-cmd.exe
- File Details
- Overview
- Analysis
sysproxy-cmd.exe
The module sysproxy-cmd.exe has been detected as Risk.Gen
File Details
MD5: |
076c2bc463fe87a59750f66edfece744 |
Size: |
66 KB |
First Published: |
2018-03-18 23:02:39 (6 years ago) |
Latest Published: |
2019-08-23 11:52:58 (4 years ago) |
Status: |
Risk.Gen (on last analysis) |
|
Analysis Date: |
2019-08-23 11:52:58 (4 years ago) |
Overview
%appdata% |
%appdata% |
%appdata% |
%appdata% |
%appdata% |
%appdata% |
%appdata% |
%appdata% |
%appdata% |
%appdata% |
|
66.3% |
|
|
18.8% |
|
|
2.8% |
|
|
1.9% |
|
|
1.6% |
|
|
1.4% |
|
|
0.9% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.5% |
|
|
0.5% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
Windows 10 |
49.8% |
|
Windows 7 |
38.5% |
|
Windows 8.1 |
9.8% |
|
Windows 8 |
0.9% |
|
Windows Vista |
0.6% |
|
Windows Server 2012 R2 |
0.3% |
|
Analysis
Subsystem: |
Windows GUI |
PE Type: |
pe |
OS Bitness: |
64 |
Image Base: |
0x0000000000400000 |
Entry Address: |
0x000014d0 |
Name |
Size of data |
MD5 |
.text |
10752 |
17d32aebd5bbb9f738dd0ab235a16006 |
.data |
512 |
35d5523a07fa8d55fcc07e9f152900f9 |
.rdata |
3584 |
19b7df853ba33e3fd96c43c4bed708d4 |
.pdata |
1024 |
6691cd5580901c4e6013443fde7c8148 |
.xdata |
1024 |
4ce76c5875a7067280a32f46de458aad |
.bss |
0 |
00000000000000000000000000000000 |
.idata |
3584 |
60aab7f1067de30cdce69f4b5fa9d6f2 |
.CRT |
512 |
9855fb126d5f2cbe164b6175a637f4e1 |
.tls |
512 |
26ca4b47cfaf6890e1ff1e4fcdd08978 |
/4 |
512 |
e3e2f409b2433657c7a16f9ee749c155 |
/19 |
4096 |
d77e038f8d56f1ad5aef2c73a757e6cc |
/31 |
512 |
72348c2a983ab53a2b4bb7b27746e0ac |
/45 |
512 |
1f24d583daa62fa81fc8bb814e719423 |
/57 |
512 |
1a321b0b819c70d0e01b4b855183d60b |