How to remove updatewin2.exe

updatewin2.exe

The module updatewin2.exe has been detected as Trojan.Kryptik

updatewin2.exe
Remove updatewin2.exe

File Details

MD5: 996ba35165bb62473d2a6743a5200d45
Size: 274 KB
First Published: 2019-03-07 05:04:53 (5 years ago)
Latest Published: 2024-02-05 23:04:31 (2 months ago)
Status: Trojan.Kryptik (on last analysis)
Analysis Date: 2024-02-05 23:04:31 (2 months ago)

Common Places:

%localappdata%
%localappdata%
%localappdata%
%localappdata%
%localappdata%
%localappdata%
%localappdata%
%localappdata%
%localappdata%
%localappdata%

Geography:

13.2%
9.9%
8.0%
5.3%
4.2%
3.5%
3.3%
3.2%
2.9%
2.9%
2.3%
2.1%
1.7%
1.7%
1.5%
1.3%
1.2%
1.1%
1.1%
1.0%
1.0%
1.0%
1.0%
0.9%
0.8%
0.8%
0.7%
0.7%
0.7%
0.7%
0.7%
0.7%
0.7%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.5%
0.5%
0.5%
0.5%
0.5%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%

OS Version:

Windows 10 66.7%
Windows 7 25.5%
Windows 8.1 6.2%
Windows 8 1.2%
Windows Vista 0.3%
Windows Server 2012 R2 0.1%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00002d64

PE Sections:

Name Size of data MD5
.text 115200 545052ec1117bb745226dd3529d3523f
.rdata 17920 9d7c37572b89c722f6098bc67e157667
.data 97280 8ec44a429fca93886a7831022af077cd
.rsrc 43008 e80a3a0f0f20392bb8d734184a04bda2
.reloc 6656 e34335b5f1ba4c90680de0a083f01154

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for updatewin2.exe
copyright for information about updatewin2.exe