How to remove w.exe
w.exe
The module w.exe has been detected as Hack.KMS
File Details
| Product Name: | KMS GUI ELDI |
| Company Name: | @ByELDI |
| MD5: | 692eaa23ce3ffa02b909ad367a1e0874 |
| Size: | 927 KB |
| First Published: | 2024-11-18 23:00:43 (a year ago) |
| Latest Published: | 2025-02-04 23:01:22 (10 months ago) |
| Status: | Hack.KMS (on last analysis) | |
| Analysis Date: | 2025-02-04 23:01:22 (10 months ago) |
Common Places:
| %profile%\downloads\kmspico\kmspico |
| %sysdrive%\$recycle.bin\s-1-5-21-3760934837-1519731527-2203948590-1001\$r4wv3gg\kmsautoportable |
| %profile%\onedrive\desktop\kms\kmspico |
Geography:
| 33.3% | ||
| 33.3% | ||
| 33.3% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x000e1e8e |
PE Sections:
| Name | Size of data | MD5 |
| .text | 917504 | 170cafa364c3f012edc6cfc39114912f |
| .rsrc | 26624 | 0108fdc1da0de78a84da0f57850de147 |
| .reloc | 512 | 33dee5dbd9b3ae9b070060031d8fa474 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for w.exe
