2 Stealer Agent Analysis

Stealer Agent
Updated on 2024-05-01 (2 months ago)
Checked by Online Virus Scanner
Online Virus Checkerv.1.0.174.174
DB Version:2024-05-01 17:00:18

Spy.Win32.Agent.ad!i

Trojan Agent is malicious software that masquerades as legitimate files or programs to carry out various harmful actions on infected computers, such as data theft or remote control by cybercriminals.

File2
Checked2024-05-01 15:01:48
MD50c7183d761f15772b7e9c788be601d29
SHA1d88c7c1e465bea7bf7377c08fba3aaf77cbf485f
SHA256244c181eb442fefcf1e1daf900896bee6569481c0e885e3c63efeef86cd64c55
SHA512fbb25b85f912897e4fdf3eba31994f5e57f7d98c46ca453400736df325d0de0555bcb1b87687b2f2f86c07ff891db151a555d7cf021a98f773e42e960affcbc1
Imphash9de09016b9b3fdf0a23383673e512061
File Size59904 bytes

Spy.Win32.Agent.ad!i Removal

Spy.Win32.Agent.ad!i Removal

Gridinsoft has the capability to identify and eliminate Spy.Win32.Agent.ad!i without requiring further user intervention.

  • Start by downloading Gridinsoft Anti-Malware to your computer.
  • Double-click on the gsam-en-install.exe file and follow the on-screen instructions to install the program.
  • Once the installation of Gridinsoft Anti-Malware is complete, the program will open on the Scan screen.
  • Click on the "Standard Scan" button.
  • After the scanning process is finished, click on "Clean Now" to remove any detected threats.
  • If prompted, restart your system to complete the removal process.

File Version Information

FileDescriptionGcmyrnbe Jxbmt Qobvwaj
CompanyNameFX SOFTWIN DKF
FileVersion82
OriginalFilenameGcmyrnbe.exe
InternalNameGcmyrnbe
LegalCopyrightCopyright © Gcmyrnbe Software 1996-2005
ProductNameGcmyrnbe
ProductVersion6.7
IQrgaSWu2vAEDw
fhQ65xfO5AO
kYINkGqIB5pnrW
PbK3IvxTQosejPMUxtkm
Q6Gili5jMhI85
irvIiN2mBjhrjGka
qC8hG8VDub76Jlu
1s5EIJXC1UlXg4aaV
ycb1Qq4RIwG1
Translation0x0409 0x04b0

Portable Executable Info

99986fe536509999eb7def333e3d289f
4d29ce475391c79e619d58b473f5a339
e0eea2a2aca4acf4
Image Base:0x00400000
Entry Point:0x00453b90
Compilation:2006-10-01 03:28:02
Checksum:0x00000000 (Actual: 0x00019263)
OS Version:9.3
PEiD:PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed
Sign:The PE file does not contain a certificate table.
Sections:3
Imports: KERNEL32, CRYPT32, GDI32, MSIMG32, OLEACC, SHELL32, user32, WTSAPI32,
Exports: 0
Resources:4

Sections

Name Virtual Address Virtual Size Raw Size MD5 Entropy
UPX0 0x00001000 0x00046000 0x00000000 d41d8cd98f00b204e9800998ecf8427e 0.00
UPX1 0x00047000 0x0000d000 0x0000ce00 c273140f87d36f76c849cc1500e59a1c 7.91
.rsrc 0x00054000 0x00002000 0x00001a00 6c4206e8e40143334faf05065f2809a6 5.27

Leave a comment*

Share your thoughts or insights about this file. Do you align with our conclusion?

*Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Please Wait...

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Learn more Download Now
Gridinsoft Anti-Malware