How to remove rnubqohcsggoglwkssgumqvwiuzhrllb.back
- File Details
- Overview
- Analysis
rnubqohcsggoglwkssgumqvwiuzhrllb.back
The module rnubqohcsggoglwkssgumqvwiuzhrllb.back has been detected as Trojan.Agent
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
98878585947bf47728915df5304ee1e7 |
| Size: |
365 KB |
| First Published: |
2017-06-11 10:04:59 (7 years ago) |
| Latest Published: |
2022-01-14 21:08:38 (2 years ago) |
| Status: |
Trojan.Agent (on last analysis) |
|
| Analysis Date: |
2022-01-14 21:08:38 (2 years ago) |
| %desktop%\programas\instalação\2\azarado\formatfactory\cd_root\autoplay |
| %desktop%\programas\instalação\2\azarado\seguro azarado\cd_root\autoplay |
| %programfiles% |
| %desktop%\programas\instalação\2\azarado\seguro azarado\cd_root\autoplay\docs |
| %desktop%\programas\instalação\2\azarado\limparpd\cd_root\autoplay |
| %sysdrive% |
| %sysdrive%\adwcleaner\quarantine |
| %desktop% |
| %profile%\vica\local settings\application data\im\identities\{01aa1589-aa5a-4bfd-af72-e67d9dcc6e2a}\message store |
| %desktop% |
| lockdir.exe |
| Protection.exe |
| Seguro Azarado.exe |
| rnubqohcsggoglwkssgumqvwiuzhrllb.back |
|
34.5% |
|
|
24.1% |
|
|
13.8% |
|
|
6.9% |
|
|
3.4% |
|
|
3.4% |
|
|
3.4% |
|
|
3.4% |
|
|
3.4% |
|
|
3.4% |
|
| Windows 10 |
34.5% |
|
| Windows 8.1 |
34.5% |
|
| Windows 7 |
24.1% |
|
| Windows XP |
6.9% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000d7560 |
| Name |
Size of data |
MD5 |
| UPX0 |
0 |
00000000000000000000000000000000 |
| UPX1 |
346112 |
4227d2b4ce244396ac49a404ed42a93e |
| .rsrc |
27136 |
7407655f3d89156f1385c1aea5e07198 |
