How to remove unelevate.exe
- File Details
- Overview
- Analysis
unelevate.exe
The module unelevate.exe has been detected as Adware.Crossrider
File Details
| MD5: |
b6d496484b3dcc75670af650c7d32112 |
| Size: |
93 KB |
| First Published: |
2018-02-09 06:03:51 (7 years ago) |
| Latest Published: |
2022-02-20 23:08:19 (3 years ago) |
| Status: |
Adware.Crossrider (on last analysis) |
|
| Analysis Date: |
2022-02-20 23:08:19 (3 years ago) |
Overview
| %sysdrive%\windows.old\users\cliente\appdata\local |
| %sysdrive%\windows.old\users\cliente\appdata\local\temp |
| %temp% |
| %temp%\sainst |
| %programfiles% |
| %programfiles% |
| %profile%\asper\local settings |
| Windows 7 |
71.4% |
|
| Windows XP |
28.6% |
|
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000028f4 |
| Name |
Size of data |
MD5 |
| .text |
61440 |
5959ab3b6b39bc365f9192215bfb0cac |
| .rdata |
13824 |
94039be043e18d8d55e6cf5ff9695133 |
| .data |
5120 |
028c55fc9f3494a142d054b7b358dd6f |
| .rsrc |
512 |
bd818411e8499957c9e7bf18e6e80a50 |
| .reloc |
6656 |
54b062c4ecf98d57b41fd003fdd15916 |
