How to remove up.exe
up.exe
The module up.exe has been detected as Trojan.Kryptik
File Details
| Company Name: | Y66 |
| MD5: | 327fe492db2de55c6442066e3ebcb0f9 |
| Size: | 339 KB |
| First Published: | 2017-07-27 10:19:29 (7 years ago) |
| Latest Published: | 2017-07-27 10:19:30 (7 years ago) |
| Status: | Trojan.Kryptik (on last analysis) | |
| Analysis Date: | 2017-07-27 10:19:30 (7 years ago) |
Common Places:
| %temp%\z0zcg53k1g |
| %temp%\xrbuantzm9 |
| %temp%\is-qu21k.tmp |
| %temp%\is-hb75u.tmp |
| %temp%\uo2dahzoi |
| %temp%\qklpg8r8p |
File Names:
| Era5Le.exe |
| up.exe |
| 3wRmzdbjV.exe |
| qklPG8r8p.exe |
Geography:
| 100.0% |
OS Version:
| Windows 7 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x00055632 |
.NET Info:
| MVID: | 41c32737-8eaf-44b8-b843-b964f8467b57 |
| Typelib ID: | 4968b57c-e14c-459b-8a4b-7dbbd6e72da4 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 342016 | adbc762a7fbfc0845eb1e19ad61a1d67 |
| .rsrc | 4608 | 378aeab00840f49a4d97c3a81b6a661b |
| .reloc | 512 | 0e47d6bb4ba1c65b6606e4770ca6058a |
More information:
Download GridinSoft
Anti-Malware - Removal tool for up.exe
