How to remove xmaslite (2018_02_26 16_17_10 UTC).exe
- File Details
- Overview
- Analysis
xmaslite (2018_02_26 16_17_10 UTC).exe
The module xmaslite (2018_02_26 16_17_10 UTC).exe has been detected as Trojan.Agent
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
0086546ffb7835f9ba954a37d849abca |
| Size: |
28 KB |
| First Published: |
2017-07-09 13:07:23 (8 years ago) |
| Latest Published: |
2023-01-08 23:54:41 (3 years ago) |
| Status: |
Trojan.Agent (on last analysis) |
|
| Analysis Date: |
2023-01-08 23:54:41 (3 years ago) |
| %sysdrive% |
| %sysdrive%\flash player.zip |
| %sysdrive%\нг\2015\n.y.embellishment_2\new year's embellishment |
| %desktop%\tor browser\games\games @amp; wallpaper\___\_____ ______ |
| %sysdrive%\utils |
| %sysdrive%\software\programs |
| %sysdrive%\нг\2015\n.y.embellishment_2\new year's embellishment |
| %mydoc%\usb configuracion ordenadores\mis documentos antiguos |
| %sysdrive%\sara\local\system volume information\_restore{dca090d7-6fcd-4d8f-98ce-a3486383074d} |
| %sysdrive%\externos\arq\natais\natal 2007\despertar-ftp\colocados |
| Natale31.exe |
| xmaslite (2018_02_26 16_17_10 UTC).exe |
| xmaslite.exe |
| Garland.exe |
| ____ ___ _____.exe |
|
23.1% |
|
|
15.4% |
|
|
15.4% |
|
|
7.7% |
|
|
7.7% |
|
|
7.7% |
|
|
7.7% |
|
|
7.7% |
|
|
7.7% |
|
| Windows 10 |
76.9% |
|
| Windows 7 |
15.4% |
|
| Windows 8 |
7.7% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000017e0 |
| Name |
Size of data |
MD5 |
| .text |
7680 |
8a4923a4f606065d040671871e2f1655 |
| .rdata |
1024 |
7b42cf0a5ed34fec1d09805edc356a56 |
| .data |
2560 |
3da502f7e9b14323700592d53971d6e7 |
| .idata |
2048 |
3bf5395e4f466c3d93e25ca2d096ad1d |
| .rsrc |
13824 |
cd9ad4ce82e84239758cd8eeccf06cb0 |
| .reloc |
1024 |
2400ab3cb9cfcf0b6719fee1d4abeffd |
