Gridinsoft Logo

InstaII.exe Stealer Gen Analysis

Stealer Gen
Updated on 2025-03-02 (20 days ago)
Checked by Online Virus Scanner
Online Virus Checker v.1.0.209.174
DB Version: 2025-03-02 01:00:31

Spy.Win32.Gen.tr

This is a generic detection name used to identify a potentially harmful or suspicious file or program that exhibits characteristics of a Trojan horse. It is malware that disguises itself as a legitimate or benign program but contains malicious code or functions.

File instaII.exe
Checked 2025-03-01 23:20:19
MD5 98099292ac1b0f59c50e291da7f5d05c
SHA1 38fbb9aeb808e9c2a6bd0200160908e2e4e2d0a7
SHA256 3bcf8487cbee03221ff01420d41a3cc70efc76f3c2998b3db3e5caf8da1cc7b7
SHA512 cbf562bd4e49d8c1d3b639f98b038fcff2dd67db5fcbc50db2694e5658f623e3b6b44412a8b3c832d65433356e794808245ab978f1a100ff59045a91b1beefe6
Imphash 5a594319a0d69dbc452e748bcf05892e
File Size 19978532 bytes

Spy.Win32.Gen.tr Removal

Spy.Win32.Gen.tr Removal

Gridinsoft has the capability to identify and eliminate Spy.Win32.Gen.tr without requiring further user intervention.

  • Start by downloading Gridinsoft Anti-Malware to your computer.
  • Double-click on the gsam-en-install.exe file and follow the on-screen instructions to install the program.
  • Once the installation of Gridinsoft Anti-Malware is complete, the program will open on the Scan screen.
  • Click on the "Standard Scan" button.
  • After the scanning process is finished, click on "Clean Now" to remove any detected threats.
  • If prompted, restart your system to complete the removal process.

File Version Information

Comments This installation was built with Inno Setup.
CompanyName Bitwar Dll Fixer
FileDescription BitwarDllFixer Setup
FileVersion 2.1.5.0
LegalCopyright Copyright \xA9 Bitwarsoft Limited All Rights Reserved.
OriginalFileName
ProductName Bitwar Dll Fixer
ProductVersion 2.1.5.0
Translation 0x0000 0x04b0

Portable Executable Info

04c7e800fc1f74858f19570a2fe24c2b
2ce6c32178eb8500764df0ce62da48ff
e8e2eae6b696c6cc
Image Base: 0x00400000
Entry Point: 0x004b5eec
Compilation: 2020-09-13 09:00:51
Checksum: 0x0126e1c9 (Actual: 0x0130e1fa)
OS Version: 6.1
PEiD: PE32 executable (GUI) Intel 80386, for MS Windows
Sign: The expected hash does not match the digest in SpcInfo
Sections: 10
Imports: kernel32, comctl32, version, user32, oleaut32, netapi32, advapi32,
Exports: 3
Resources: 21

Sections

Name Virtual Address Virtual Size Raw Size MD5 Entropy
.text 0x00001000 0x000b361c 0x000b3800 ad6e46e3a3acdb533eb6a077f6d065af 6.36
.itext 0x000b5000 0x00001688 0x00001800 d40fc822339d01f2abcc5493ac101c94 5.97
.data 0x000b7000 0x000037a4 0x00003800 4c195d5591f6d61265df08a3733de3a2 5.04
.bss 0x000bb000 0x00006de8 0x00000000 d41d8cd98f00b204e9800998ecf8427e 0.00
.idata 0x000c2000 0x00000f36 0x00001000 a73d686f1e8b9bb06ec767721135e397 4.90
.didata 0x000c3000 0x000001a4 0x00000200 41b8ce23dd243d14beebc71771885c89 2.76
.edata 0x000c4000 0x0000009a 0x00000200 37c1a5c63717831863e018c0f51dabb7 1.87
.tls 0x000c5000 0x00000018 0x00000000 d41d8cd98f00b204e9800998ecf8427e 0.00
.rdata 0x000c6000 0x0000005d 0x00000200 8f2f090acd9622c88a6a852e72f94e96 1.38
.rsrc 0x000c7000 0x000056c4 0x00005800 230f47a2ce4cb91c05da696599a85262 6.25

Leave a comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware