How to remove zCrashReport64.exe

» File
File Details
Overview
Analysis

zCrashReport64.exe

The module zCrashReport64.exe has been detected as Trojan.Downloader

zCrashReport64.exe

Remove zCrashReport64.exe

File Details

Main Info:

Product Name:	CrashRpt
MD5:	5afce9d9cb4fbf1081c8ff76466e138b
Size:	388 KB
First Published:	2024-03-12 23:03:40 (2 years ago)
Latest Published:	2024-03-12 23:03:40 (2 years ago)

Analysis:

Status:	Trojan.Downloader (on last analysis)
Analysis Date:	2024-03-12 23:03:40 (2 years ago)

Overview

Digital Signature

Signed By:	Zoom Video Communications, Inc.
Status:	Invalid (digital signature could be stolen or file could be patched)

Common Places:

%appdata%\zoom\5.9.1.2581\zoom.msi

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000140000000
Entry Address:	0x00017430

PE Sections:

Name	Size of data	MD5
.text	210944	40c3c9b670ac3b467d35c973ccd9a478
.rdata	69120	ed105109dbf53c4a1476d5bab0b93a78
.data	3584	3c298b7cc0702776b21ec428fbca9982
.pdata	10240	d912ffa945b41a72c14aea9b23556384
_RDATA	512	e2540a9b33259bb2fc6384504a7ad647
.rsrc	84992	2c6111b8277574a89f61cd557054cd22
.reloc	2560	3e796a541f0d859a2e550de4b8c01656

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for zCrashReport64.exe

copyright for information about zCrashReport64.exe