How to remove sysproxy-cmd.exe
- File Details
- Overview
- Analysis
sysproxy-cmd.exe
The module sysproxy-cmd.exe has been detected as Risk.Gen
File Details
MD5: |
6869859e7a7f39d675f503067bfc2d52 |
Size: |
66 KB |
First Published: |
2017-09-07 07:12:01 (6 years ago) |
Latest Published: |
2019-07-30 07:34:19 (4 years ago) |
Status: |
Risk.Gen (on last analysis) |
|
Analysis Date: |
2019-07-30 07:34:19 (4 years ago) |
Overview
%appdata%\byteexec |
%appdata% |
%appdata% |
%appdata% |
%appdata% |
|
31.3% |
|
|
28.1% |
|
|
21.9% |
|
|
6.3% |
|
|
3.1% |
|
|
3.1% |
|
|
3.1% |
|
|
3.1% |
|
Windows 10 |
75.0% |
|
Windows 7 |
18.8% |
|
Windows 8.1 |
6.3% |
|
Analysis
Subsystem: |
Windows GUI |
PE Type: |
pe |
OS Bitness: |
64 |
Image Base: |
0x0000000000400000 |
Entry Address: |
0x000014d0 |
Name |
Size of data |
MD5 |
.text |
10752 |
a30c6e1e2bedad746a56db029ff06926 |
.data |
512 |
0582c3b153436e958a2d06eff4f893e0 |
.rdata |
2048 |
4fcdd73b1d15b1389e8161891f14a4e4 |
.pdata |
1024 |
0124dd048a93492e252249cfa57a33b4 |
.xdata |
1024 |
232dea8c267b6786a6cc1840412491ab |
.bss |
0 |
00000000000000000000000000000000 |
.idata |
3072 |
83aca60a0a983091eab93d276ce57a47 |
.CRT |
512 |
32d6d963a9d0708e530060c190862ec9 |
.tls |
512 |
57ab49925262222ecb169127e97bfd67 |
/4 |
512 |
22e70984a47e53f3ab84212a3fe749c2 |
/19 |
7680 |
21ad11b656913827b7b27234266197d3 |
/31 |
512 |
f4294aabc8ac7ec5a081c9f5b05a7471 |
/45 |
1024 |
3cd972854c483f326c06de6ab743b69a |
/57 |
512 |
9e6a98ab63004b721568f6f77ccafe81 |