How to remove waspwing.exe
- File Details
- Overview
- Analysis
waspwing.exe
The module waspwing.exe has been detected as PUP.Presenoker
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
179b830a985286d6fd5e5a961c226e6e |
| Size: |
1 MB |
| First Published: |
2020-04-11 08:23:49 (4 years ago) |
| Latest Published: |
2024-10-09 23:00:46 (2 months ago) |
| Status: |
PUP.Presenoker (on last analysis) |
|
| Analysis Date: |
2024-10-09 23:00:46 (2 months ago) |
| %commonappdata%\windows |
| %commonappdata%\windows |
| %commonappdata%\windows |
| %commonappdata%\windows |
| %commonappdata%\windows |
| %commonappdata%\windows |
| %commonappdata%\windows |
| %commonappdata%\windows |
| %commonappdata%\windows |
| %commonappdata%\windows |
|
47.6% |
|
|
16.7% |
|
|
11.9% |
|
|
11.9% |
|
|
2.4% |
|
|
2.4% |
|
|
2.4% |
|
|
2.4% |
|
|
2.4% |
|
| Windows 10 |
72.1% |
|
| Windows 7 |
25.6% |
|
| Windows 8.1 |
2.3% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0013b610 |
| Name |
Size of data |
MD5 |
| .text |
1278464 |
94a3539bd9061bd0f5ae2812ae0080ca |
| .itext |
7680 |
38d677eda6af8fe24c05db632b9f6100 |
| .data |
74240 |
0897850a81aa9905dbb768e04d6b2450 |
| .bss |
0 |
00000000000000000000000000000000 |
| .idata |
12800 |
8a52565051f2c9c1b8b8f2106ba517a0 |
| .didata |
1024 |
4f5547939b2dbaee3a01d7c612f01b0b |
| .edata |
1024 |
7b43e8a7b40b28ae0e22a3f706ae27dd |
| .tls |
0 |
00000000000000000000000000000000 |
| .rdata |
512 |
37a805e94a639816c3e14d87b0e68a63 |
| .reloc |
0 |
00000000000000000000000000000000 |
| .rsrc |
431104 |
3f635a3b9196762db8b02d65287e17e8 |
