Gridinsoft Logo

2 Stealer Agent Analysis

Stealer Agent
Updated on 2024-05-01 (5 months ago)
Checked by Online Virus Scanner
Online Virus Checker v.1.0.174.174
DB Version: 2024-05-01 17:00:18

Spy.Win32.Agent.ad!i

Trojan Agent is malicious software that masquerades as legitimate files or programs to carry out various harmful actions on infected computers, such as data theft or remote control by cybercriminals.

File 2
Checked 2024-05-01 15:01:48
MD5 0c7183d761f15772b7e9c788be601d29
SHA1 d88c7c1e465bea7bf7377c08fba3aaf77cbf485f
SHA256 244c181eb442fefcf1e1daf900896bee6569481c0e885e3c63efeef86cd64c55
SHA512 fbb25b85f912897e4fdf3eba31994f5e57f7d98c46ca453400736df325d0de0555bcb1b87687b2f2f86c07ff891db151a555d7cf021a98f773e42e960affcbc1
Imphash 9de09016b9b3fdf0a23383673e512061
File Size 59904 bytes

Spy.Win32.Agent.ad!i Removal

Spy.Win32.Agent.ad!i Removal

Gridinsoft has the capability to identify and eliminate Spy.Win32.Agent.ad!i without requiring further user intervention.

  • Start by downloading Gridinsoft Anti-Malware to your computer.
  • Double-click on the gsam-en-install.exe file and follow the on-screen instructions to install the program.
  • Once the installation of Gridinsoft Anti-Malware is complete, the program will open on the Scan screen.
  • Click on the "Standard Scan" button.
  • After the scanning process is finished, click on "Clean Now" to remove any detected threats.
  • If prompted, restart your system to complete the removal process.

File Version Information

FileDescription Gcmyrnbe Jxbmt Qobvwaj
CompanyName FX SOFTWIN DKF
FileVersion 82
OriginalFilename Gcmyrnbe.exe
InternalName Gcmyrnbe
LegalCopyright Copyright © Gcmyrnbe Software 1996-2005
ProductName Gcmyrnbe
ProductVersion 6.7
IQrgaSWu2 vAEDw
fhQ65x fO5AO
kYINkG qIB5pnrW
PbK3IvxTQo sejPMUxtkm
Q6Gili 5jMhI85
irvIiN2 mBjhrjGka
qC8hG8V Dub76Jlu
1s5EIJXC1U lXg4aaV
ycb1Qq4 RIwG1
Translation 0x0409 0x04b0

Portable Executable Info

99986fe536509999eb7def333e3d289f
4d29ce475391c79e619d58b473f5a339
e0eea2a2aca4acf4
Image Base: 0x00400000
Entry Point: 0x00453b90
Compilation: 2006-10-01 03:28:02
Checksum: 0x00000000 (Actual: 0x00019263)
OS Version: 9.3
PEiD: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed
Sign: The PE file does not contain a certificate table.
Sections: 3
Imports: KERNEL32, CRYPT32, GDI32, MSIMG32, OLEACC, SHELL32, user32, WTSAPI32,
Exports: 0
Resources: 4

Sections

Name Virtual Address Virtual Size Raw Size MD5 Entropy
UPX0 0x00001000 0x00046000 0x00000000 d41d8cd98f00b204e9800998ecf8427e 0.00
UPX1 0x00047000 0x0000d000 0x0000ce00 c273140f87d36f76c849cc1500e59a1c 7.91
.rsrc 0x00054000 0x00002000 0x00001a00 6c4206e8e40143334faf05065f2809a6 5.27

Leave a comment *

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware