Gridinsoft Logo

EasyBackupLight_OneClick.exe Trojan Agent Analysis

Trojan Agent
Updated on 2024-10-26 (2 months ago)
Checked by Online Virus Scanner
Online Virus Checker v.1.0.194.174
DB Version: 2024-10-26 13:00:24

Trojan.Win32.Agent.oa!s1

Trojan Agent is malicious software that masquerades as legitimate files or programs to carry out various harmful actions on infected computers, such as data theft or remote control by cybercriminals.

File EasyBackupLight_OneClick.exe
Checked 2024-10-26 10:56:12
MD5 a434c6cd99a721311b883c0cab193df4
SHA1 6b7ac54149488db701bfd5832141cdbe55cd3d7d
SHA256 81fca9871be59844adf0c387fe8972ea11f1ce8fc94d88b690dd861336981d89
SHA512 9da8199893ee875eb5701c92f8a969619eecf86c3622da30152fa87cab30afc24a6471fcc91706c6bffa9434a5fb6d4a0842cd92b5be896d18914d710fa5d331
Imphash 808056f969a877ba6ca601d1f2bca1fe
File Size 4811892 bytes

Trojan.Win32.Agent.oa!s1 Removal

Trojan.Win32.Agent.oa!s1 Removal

Gridinsoft has the capability to identify and eliminate Trojan.Win32.Agent.oa!s1 without requiring further user intervention.

  • Start by downloading Gridinsoft Anti-Malware to your computer.
  • Double-click on the gsam-en-install.exe file and follow the on-screen instructions to install the program.
  • Once the installation of Gridinsoft Anti-Malware is complete, the program will open on the Scan screen.
  • Click on the "Standard Scan" button.
  • After the scanning process is finished, click on "Clean Now" to remove any detected threats.
  • If prompted, restart your system to complete the removal process.

File Version Information

CompanyName FreeTools by U.G.
FileDescription EasyBackupLight_OneClick
FileVersion 06.00.00.03
InternalName EasyBackupLight_OneClick
LegalCopyright FreeTools by U.G.
LegalTrademarks FreeTools by U.G.
OriginalFilename EasyBackupLight_OneClick.exe
ProductName EasyBackupLight_OneClick
ProductVersion 01.00.00.09
Comments
Translation 0x0409 0x04e4

Portable Executable Info

176d7666bec75f50309643bf73ffee38
8a0725807de24f17c0b4262b8ee2097d
96337971ea313336
Image Base: 0x00400000
Entry Point: 0x0045368c
Compilation: 2021-08-23 03:55:16
Checksum: 0x00000000 (Actual: 0x004a18df)
OS Version: 5.0
PEiD: PE32 executable (console) Intel 80386, for MS Windows
Sign: No valid SignedData structure was found.
Sections: 11
Imports: oleaut32, advapi32, user32, kernel32, mpr, SHFolder, MSVCRT, msvcrt, shell32,
Exports: 1
Resources: 25

Sections

Name Virtual Address Virtual Size Raw Size MD5 Entropy
.text 0x00001000 0x00051218 0x00051400 3b9f536ae7b8fd17d5e6b4a4472afe24 6.48
.itext 0x00053000 0x00000b78 0x00000c00 78a664898258aadaa7e9d616e34c05bc 6.12
.data 0x00054000 0x00005a98 0x00005c00 4e0687795cc0dc29f7a1ece48193e505 6.19
.bss 0x0005a000 0x00018dc8 0x00000000 d41d8cd98f00b204e9800998ecf8427e 0.00
.idata 0x00073000 0x00001a0c 0x00001c00 1eb53c227109a9c10140322c2a99d159 4.81
.didata 0x00075000 0x00000130 0x00000200 82678682c5b8385c9009e44745738e3f 2.05
.edata 0x00076000 0x0000005a 0x00000200 b37d027049349ea694153731e7a4fc86 1.05
.tls 0x00077000 0x0000000c 0x00000000 d41d8cd98f00b204e9800998ecf8427e 0.00
.rdata 0x00078000 0x00000018 0x00000200 86b038fadc4b719cee39a675760d6230 0.21
.reloc 0x00079000 0x00006e14 0x00007000 143a7a997133d78704037b1dbeadf265 6.57
.rsrc 0x00080000 0x00059cb4 0x00059e00 48b3d81daf95e111903080e9ccb8ec1d 7.80

1 comment(s)

GI
Gianni
🕓 Oct 26, 2024

this tool is for backup and is absolutely clean. False Positive!

Leave a comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware