How to remove updatewin1.exe

updatewin1.exe

The module updatewin1.exe has been detected as Trojan.Kryptik

updatewin1.exe
Remove updatewin1.exe

File Details

MD5: 5b4bd24d6240f467bfbc74803c9f15b0
Size: 272 KB
First Published: 2019-03-07 05:04:42 (5 years ago)
Latest Published: 2024-02-05 23:02:56 (2 months ago)
Status: Trojan.Kryptik (on last analysis)
Analysis Date: 2024-02-05 23:02:56 (2 months ago)

Common Places:

%localappdata%
%localappdata%
%localappdata%
%localappdata%
%localappdata%
%localappdata%
%localappdata%
%localappdata%
%localappdata%
%localappdata%

Geography:

13.8%
10.8%
9.7%
5.0%
4.0%
3.4%
3.3%
3.1%
2.9%
2.5%
2.0%
1.9%
1.9%
1.7%
1.7%
1.2%
1.1%
1.0%
0.9%
0.9%
0.9%
0.9%
0.9%
0.9%
0.9%
0.8%
0.8%
0.8%
0.7%
0.7%
0.7%
0.7%
0.7%
0.7%
0.6%
0.6%
0.6%
0.5%
0.5%
0.5%
0.5%
0.5%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%

OS Version:

Windows 10 70.4%
Windows 7 21.8%
Windows 8.1 6.5%
Windows 8 1.2%
Windows Vista 0.1%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00002d76

PE Sections:

Name Size of data MD5
.text 115200 538934e7e1d00fda327ae9cf14d7eaf0
.rdata 18432 11385c9ce0bb015b49aeb85dcc67f11c
.data 95232 5ed0c496e0ffbe9ac5c9ba238e1e07f7
.rsrc 42496 096137037bfad6b6227b2e708d1d0030
.reloc 6656 5180aff9665dd2541bc3c5ef4ca1419c

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for updatewin1.exe
copyright for information about updatewin1.exe