How to remove trch.dll
trch.dll
The module trch.dll has been detected as Trojan.ShadowBrokers
File Details
MD5: | 01d5adbfee39c5807ee46f7990f5fda7 |
Size: | 48 KB |
First Published: | 2017-07-18 23:06:44 (6 years ago) |
Latest Published: | 2024-03-23 23:02:33 (5 days ago) |
Status: | Trojan.ShadowBrokers (on last analysis) | |
Analysis Date: | 2024-03-23 23:02:33 (5 days ago) |
Common Places:
%appdata%\ltdltd61\ea |
%appdata%\notifynotify82\ea |
%system%\mfen.exe |
%windir%\setup\fou |
%commonappdata%\rundll |
%windir%\system32 |
%commonappdata%\svhost |
%sysdrive%\$recycle.bin\s-1-5-21-2570348591-2767011175-3200952900-1016\$ro0c72t.rar\445\run\specials |
%temp%\5\rarsfx1 |
%commonappdata%\temp\445.zip\run\specials |
Geography:
39.2% | ||
12.3% | ||
9.7% | ||
8.2% | ||
3.7% | ||
3.7% | ||
2.5% | ||
2.4% | ||
1.7% | ||
1.7% | ||
1.5% | ||
1.4% | ||
0.9% | ||
0.9% | ||
0.7% | ||
0.7% | ||
0.7% | ||
0.6% | ||
0.6% | ||
0.5% | ||
0.4% | ||
0.4% | ||
0.3% | ||
0.3% | ||
0.3% | ||
0.3% | ||
0.3% | ||
0.2% | ||
0.2% | ||
0.2% | ||
0.2% | ||
0.2% | ||
0.2% | ||
0.2% | ||
0.2% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% | ||
0.1% |
OS Version:
Windows 7 | 86.1% | |
Windows 10 | 8.9% | |
Windows Server 2008 R2 | 2.3% | |
Windows 8.1 | 1.1% | |
Windows XP | 0.8% | |
Windows Server 2012 R2 | 0.3% | |
Windows Vista | 0.3% | |
Windows Web Server 2008 R2 | 0.1% | |
Windows Server 2003 | 0.1% | |
Windows 8 | 0.1% |
Analysis
Subsystem: | Windows GUI |
PE Type: | pe |
OS Bitness: | 32 |
Image Base: | 0x10000000 |
Entry Address: | 0x00009d03 |
PE Sections:
Name | Size of data | MD5 |
.text | 36864 | b5cc651c949ab71cb26c61eb2bee82e9 |
.rdata | 9216 | bf5b40e2f4e79e3caefefcab6c8168fc |
.data | 512 | d81ee260efeb56aaf0c6e5033ab1c612 |
.reloc | 2048 | f628ea14074ecee9e0463971f1141d37 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for trch.dll