Gridinsoft Logo

AimFury™.exe Backdoor Gen Analysis

Backdoor Gen
Updated on 2024-08-05 (5 months ago)
Checked by Online Virus Scanner
Online Virus Checker v.1.0.183.174
DB Version: 2024-08-05 21:00:33

Backdoor.Win32.Gen.ns

This is a generic detection name used to identify a potentially harmful or suspicious file or program that exhibits characteristics of a Trojan horse. It is malware that disguises itself as a legitimate or benign program but contains malicious code or functions.

File AimFury™.exe
Checked 2024-08-05 19:04:04
MD5 1a3d9c72a38acc8beefca80f67ab0908
SHA1 ee86f2337970bf519d0b84af7fa7a78aabe29371
SHA256 5774a907f209476fa79a3709791c9421875c16ebac1c4cede99bbcbc60fec685
SHA512 1059ce673495c271484442aa32b57c494a37f7942e6472dcd21029d8a75ebacccddbb992ca3f593121c7888bf363703796bc0161e7a7913f8748c51c081d6812
Imphash ac3c6fd357d51c8e5c1264fe730abdac
File Size 90996441 bytes

Backdoor.Win32.Gen.ns Removal

Backdoor.Win32.Gen.ns Removal

Gridinsoft has the capability to identify and eliminate Backdoor.Win32.Gen.ns without requiring further user intervention.

  • Start by downloading Gridinsoft Anti-Malware to your computer.
  • Double-click on the gsam-en-install.exe file and follow the on-screen instructions to install the program.
  • Once the installation of Gridinsoft Anti-Malware is complete, the program will open on the Scan screen.
  • Click on the "Standard Scan" button.
  • After the scanning process is finished, click on "Clean Now" to remove any detected threats.
  • If prompted, restart your system to complete the removal process.

File Version Information

CompanyName Unknown
FileDescription Installation
FileVersion 1.0.0.0
LegalCopyright (c)
ProductName Setup
ProductVersion 1.0.0.0
ProgramID com.embarcadero.Setup
Translation 0x0409 0x04e4

Portable Executable Info

b05afd04882d2fd936fe53232c4872a7
f63c14224a043a153e02fa4221849f6d
30f0f0b2b296f030
Image Base: 0x00400000
Entry Point: 0x00666ce0
Compilation: 2023-01-09 03:53:03
Checksum: 0x00000000 (Actual: 0x056cb469)
OS Version: 6.0
PEiD: PE32 executable (GUI) Intel 80386, for MS Windows
Sign: The PE file does not contain a certificate table.
Sections: 11
Imports: wininet, winspool, comdlg32, comctl32, shell32, user32, version, oleaut32, advapi32, msvcrt, kernel32, ole32, gdi32,
Exports: 3
Resources: 84

Sections

Name Virtual Address Virtual Size Raw Size MD5 Entropy
.text 0x00001000 0x002631c0 0x00263200 beeaa2be3e1e8fdc3798eabb483d7657 6.48
.itext 0x00265000 0x00001d50 0x00001e00 57c41d5453c6ae40e5dfa6b4479b046e 6.31
.data 0x00267000 0x0000a584 0x0000a600 ebbb56d61f6d82e37c8acc034abd9fda 6.20
.bss 0x00272000 0x00006e8c 0x00000000 d41d8cd98f00b204e9800998ecf8427e 0.00
.idata 0x00279000 0x0000393e 0x00003a00 01605f3352920cf933e5b2ef96626907 5.26
.didata 0x0027d000 0x00000cbc 0x00000e00 21a59b6e69b0ca4fdcc69514c00fb45f 4.14
.edata 0x0027e000 0x00000097 0x00000200 075ecc59cbdd0ba98d3d73103ed83cae 1.85
.tls 0x0027f000 0x00000054 0x00000000 d41d8cd98f00b204e9800998ecf8427e 0.00
.rdata 0x00280000 0x0000005d 0x00000200 eaa6e6bad2590d62d8ed589e13796b9e 1.38
.reloc 0x00281000 0x00034a60 0x00034c00 66ff852918622f50261c07492bedd57e 6.72
.rsrc 0x002b6000 0x00029780 0x00029800 5ac258c245aa4e3ae6339b70ebfec6d6 7.08

Leave a comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware