How to remove vrXRFY5dbavKfcWeWJKPUWzs.exe

» File
File Details
Overview
Analysis

vrXRFY5dbavKfcWeWJKPUWzs.exe

The module vrXRFY5dbavKfcWeWJKPUWzs.exe has been detected as Trojan.Bebra

vrXRFY5dbavKfcWeWJKPUWzs.exe

Remove vrXRFY5dbavKfcWeWJKP

File Details

Main Info:

MD5:	9da8bed2ce8aaea240d4cb0f5bf1ecc7
Size:	5 MB
First Published:	2023-08-15 23:18:03 (9 months ago)
Latest Published:	2024-04-30 23:05:00 (5 days ago)

Analysis:

Status:	Trojan.Bebra (on last analysis)
Analysis Date:	2024-04-30 23:05:00 (5 days ago)

Overview

Digital Signature

Signed By:	www.esteemed.com
Status:	Invalid (digital signature could be stolen or file could be patched)

Common Places:

%profile%\pictures

%profile%\pictures

%profile%\pictures

%profile%\pictures

%profile%\pictures

%profile%\pictures

%profile%\pictures

%profile%\pictures

%profile%\pictures

%profile%\pictures

Geography:

100.0%

OS Version:

Windows 7

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000000400000
Entry Address:	0x00eee000

PE Sections:

Name	Size of data	MD5
	1798373	5987f896fbd9aa87a2f67278403cb3d1
	103192	e09fbf26abe09cf96bbd98756f36a59c
	1374824	8b99e4661734831ece32d6fa2e4c73e0
	14447	6f3d322f687acbd1756049558c61dab3
	4124	a5abe48733528b7b4530e3b584826134
	0	d41d8cd98f00b204e9800998ecf8427e
	199	fad1199c9aa983dcf8395cd7f28594b2
	368	bc0c327434f15514021f4e6491abdaf5
	31	f73bcaf922ac362af2b872e0bbf587f6
	6	d914a36e2b564ec19910e0eff66098e2
	15713	bbbf16d358a3f98ab43f6eac97a86f76
.exports	512	8ea0f0c94e9566c756100a3e40e645fe
.imports	512	fd6900358c8e5581cc19416cccbc454f
.tls	512	86bc3bafe5002a73abb416be24b55b0a
.themida	0	d41d8cd98f00b204e9800998ecf8427e
.boot	2671616	6f5941fb402def2e3698fe8027b1a443
.reloc	512	1deabce27a9bcb57c47b45de84620052
.taggant	8212	1e4917cdedf40bd9e7ffa9ffe736f181

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for vrXRFY5dbavKfcWeWJKPUWzs.exe

copyright for information about vrXRFY5dbavKfcWeWJKPUWzs.exe