TrojanDownloader:AutoIt/Agent.J Files
%SYSTEMDRIVE%\streamer\stream.txt
File name: stream.txtSize: 63.81 KB (63818 bytes)
MD5: c585f4faee96a0bec3b0f93f37239008
Detection count: 8,537
Mime Type: unknown/txt
Path: %SYSTEMDRIVE%\streamer
Group: Malware file
Last Updated: February 8, 2025
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\microsoft\windows\helper.exe
File name: helper.exeSize: 6.97 MB (6979584 bytes)
MD5: d153209ef11ad69f868ca810e9bbc99b
Detection count: 1,808
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\microsoft\windows
Group: Malware file
Last Updated: April 23, 2020
C:\Users\<username>\AppData\Roaming\cmitros.exe
File name: cmitros.exeSize: 860.89 KB (860891 bytes)
MD5: 4642eba0f3f8fe0778b88ffce1506bc9
Detection count: 710
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming\cmitros.exe
Group: Malware file
Last Updated: December 12, 2024
C:\Users\<username>\AppData\Roaming\ythgrfed.exe
File name: ythgrfed.exeSize: 19.12 MB (19128320 bytes)
MD5: 3ba321ee9799577ab20f40743f90421a
Detection count: 604
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming
Group: Malware file
Last Updated: August 22, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-f..tions-adm.resources_31bf3856ad364e35_10.0.16299.15_ru-ru_d274a3b647e6dd36\mssrch.exe
File name: mssrch.exeSize: 1.23 MB (1239552 bytes)
MD5: 20c2fa7f1e2becab06650083c6cd615e
Detection count: 534
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-f..tions-adm.resources_31bf3856ad364e35_10.0.16299.15_ru-ru_d274a3b647e6dd36\mssrch.exe
Group: Malware file
Last Updated: August 4, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-s..foldersui.resources_31bf3856ad364e35_10.0.16299.15_ru-ru_22ebd96cbec352f0\networkhelper.exe
File name: networkhelper.exeSize: 1.23 MB (1238016 bytes)
MD5: f87e0abd50335e36c32fe103cba3bed2
Detection count: 525
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-s..foldersui.resources_31bf3856ad364e35_10.0.16299.15_ru-ru_22ebd96cbec352f0\networkhelper.exe
Group: Malware file
Last Updated: August 4, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-c..smsrouter.resources_31bf3856ad364e35_10.0.17134.1_ru-ru_8be0e46deb54187b\winrscmd.exe
File name: winrscmd.exeSize: 1.24 MB (1248768 bytes)
MD5: 4fa23db3a88dcc3b86ceb7f55d6136ef
Detection count: 515
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-c..smsrouter.resources_31bf3856ad364e35_10.0.17134.1_ru-ru_8be0e46deb54187b\winrscmd.exe
Group: Malware file
Last Updated: August 4, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\msil_napsnap.resources\ssshim.exe
File name: ssshim.exeSize: 2.2 MB (2207232 bytes)
MD5: 3d9ae690ce0efb6453b8417a1f2c3fd7
Detection count: 511
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\msil_napsnap.resources\ssshim.exe
Group: Malware file
Last Updated: August 5, 2020
%SYSTEMDRIVE%\Users\<username>\AppData\Roaming\amd64_microsoft-windows-h..-hmeshare.resources\vdsbas.exe
File name: vdsbas.exeSize: 1.6 MB (1606608 bytes)
MD5: 55f1ac9335500fff24ff75bfa3d3df33
Detection count: 492
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\AppData\Roaming\amd64_microsoft-windows-h..-hmeshare.resources\vdsbas.exe
Group: Malware file
Last Updated: August 4, 2020
%SYSTEMDRIVE%\Users\<username>\AppData\Roaming\x86_microsoft-windows-t..ty-client.resources\NAPHLPR.exe
File name: NAPHLPR.exeSize: 2.55 MB (2556416 bytes)
MD5: ca279fdcd6bdc39b7b847135d5de8970
Detection count: 461
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\AppData\Roaming\x86_microsoft-windows-t..ty-client.resources\NAPHLPR.exe
Group: Malware file
Last Updated: November 16, 2020
%APPDATA%\Microsoft\HeciServer.exe
File name: HeciServer.exeSize: 1.26 MB (1263590 bytes)
MD5: 58a8b55bb48b6c849d803cf689349120
Detection count: 454
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Microsoft
Group: Malware file
Last Updated: August 6, 2016
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\msil_system.reflection.context.resources_b77a5c561934e089_4.0.15522.0_ru-ru_5342f0a86d1156d3\vccorlib140d.exe
File name: vccorlib140d.exeSize: 1.23 MB (1239552 bytes)
MD5: 28aebc9dedff76a4bcc93313d4807f30
Detection count: 419
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\msil_system.reflection.context.resources_b77a5c561934e089_4.0.15522.0_ru-ru_5342f0a86d1156d3\vccorlib140d.exe
Group: Malware file
Last Updated: January 29, 2023
%LOCALAPPDATA%\win32.exe
File name: win32.exeSize: 3.01 MB (3015176 bytes)
MD5: 93a24a912d39ecd618d18809b4597beb
Detection count: 382
File type: Executable File
Mime Type: unknown/exe
Path: %LOCALAPPDATA%
Group: Malware file
Last Updated: March 11, 2017
C:\Users\<username>\AppData\Roaming\973123.exe
File name: 973123.exeSize: 521.02 KB (521025 bytes)
MD5: 775121dc6adc5e93313145a74ea2b9f6
Detection count: 377
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming
Group: Malware file
Last Updated: August 5, 2020
%APPDATA%\cmitros.exe
File name: cmitros.exeSize: 934.61 KB (934619 bytes)
MD5: 5b0720fd659b75ecc9aef3d19c0494fa
Detection count: 377
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: March 15, 2017
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-storprop_31bf3856ad364e35_10.0.16299.15_none_493ee069a20e2887\mtxclu.exe
File name: mtxclu.exeSize: 3.13 MB (3138560 bytes)
MD5: 685b211cc9f4026aef683734c6b98b41
Detection count: 363
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-storprop_31bf3856ad364e35_10.0.16299.15_none_493ee069a20e2887\mtxclu.exe
Group: Malware file
Last Updated: August 4, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-nlasvc_31bf3856ad364e35_10.0.17134.1_none_4d06821e7414ab4f\dataexchange.exe
File name: dataexchange.exeSize: 979.96 KB (979968 bytes)
MD5: 7bb6d8e6eac9555ae440b3093903532b
Detection count: 358
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-nlasvc_31bf3856ad364e35_10.0.17134.1_none_4d06821e7414ab4f\dataexchange.exe
Group: Malware file
Last Updated: August 4, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_microsoft-windows-n..meworkapi.resources_31bf3856ad364e35_6.1.7600.16385_ru-ru_9a27c04f87457f63\wscapi.exe
File name: wscapi.exeSize: 1.24 MB (1247072 bytes)
MD5: 69248cf27d8816e8f5c040b7e5cabce4
Detection count: 356
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_microsoft-windows-n..meworkapi.resources_31bf3856ad364e35_6.1.7600.16385_ru-ru_9a27c04f87457f63\wscapi.exe
Group: Malware file
Last Updated: August 5, 2020
%WINDIR%\Update\vbc.exe
File name: vbc.exeSize: 32.71 MB (32713878 bytes)
MD5: e37175cdd38864fdcd8a9d27e0d5118b
Detection count: 349
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\Update
Group: Malware file
Last Updated: November 16, 2016
%WINDIR%\okiloveme.exe
File name: okiloveme.exeSize: 672.42 KB (672423 bytes)
MD5: e1d5c636cf17487d6e869ff09b2d83d7
Detection count: 335
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%
Group: Malware file
Last Updated: January 21, 2017
%LOCALAPPDATA%\win32.exe
File name: win32.exeSize: 5.48 MB (5486090 bytes)
MD5: 4545da3141f42636d5eb0cd97652d782
Detection count: 328
File type: Executable File
Mime Type: unknown/exe
Path: %LOCALAPPDATA%
Group: Malware file
Last Updated: March 11, 2017
%APPDATA%\Microsoft\Windows\Templates\Youwave_Android_PluginUpdate.exe
File name: Youwave_Android_PluginUpdate.exeSize: 2.12 MB (2120772 bytes)
MD5: 2912e38fd0f5243b9e902a4e2247710c
Detection count: 326
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Microsoft\Windows\Templates
Group: Malware file
Last Updated: October 4, 2017
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-twinui-appcore_31bf3856ad364e35_10.0.16299.15_none_b4b4e9a3cbf790b7\input.exe
File name: input.exeSize: 1.24 MB (1240064 bytes)
MD5: 17779f502f6b054597d0b8ca905c8c9f
Detection count: 323
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-twinui-appcore_31bf3856ad364e35_10.0.16299.15_none_b4b4e9a3cbf790b7\input.exe
Group: Malware file
Last Updated: August 4, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-c..smsrouter.resources_31bf3856ad364e35_10.0.17134.1_ru-ru_8be0e46deb54187b\winrscmd.exe
File name: winrscmd.exeSize: 1.24 MB (1249280 bytes)
MD5: 2e69965e443f1ac56f874b97803fa56f
Detection count: 323
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-c..smsrouter.resources_31bf3856ad364e35_10.0.17134.1_ru-ru_8be0e46deb54187b\winrscmd.exe
Group: Malware file
Last Updated: August 4, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-comdlg32.resources_31bf3856ad364e35_6.1.7601.17514_fi-fi_e802953b7bce56ec\d3dim.exe
File name: d3dim.exeSize: 1.05 MB (1059992 bytes)
MD5: 41e2d03d385168cf9b08856753188399
Detection count: 321
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-comdlg32.resources_31bf3856ad364e35_6.1.7601.17514_fi-fi_e802953b7bce56ec\d3dim.exe
Group: Malware file
Last Updated: August 4, 2020
%APPDATA%\Microsoft\Windows\Templates\Youwave_Android_PluginUpdate.exe
File name: Youwave_Android_PluginUpdate.exeSize: 1.41 MB (1413848 bytes)
MD5: dbcd98f871f9f424d65a9c7cc399f342
Detection count: 319
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Microsoft\Windows\Templates
Group: Malware file
Last Updated: October 4, 2017
C:\Users\<username>\AppData\Roaming\install\win32.exe
File name: win32.exeSize: 573.75 KB (573757 bytes)
MD5: d03a8383b9e22949f03f57b6d7181b65
Detection count: 295
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming\install\win32.exe
Group: Malware file
Last Updated: January 10, 2023
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_microsoft-windows-n..meworkapi.resources_31bf3856ad364e35_6.1.7600.16385_ru-ru_9a27c04f87457f63\wscapi.exe
File name: wscapi.exeSize: 1.26 MB (1260824 bytes)
MD5: ccb71927fe50dce62d51f5745c675558
Detection count: 288
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_microsoft-windows-n..meworkapi.resources_31bf3856ad364e35_6.1.7600.16385_ru-ru_9a27c04f87457f63\wscapi.exe
Group: Malware file
Last Updated: August 5, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_eaime-traceproviders\mshtmled.exe
File name: mshtmled.exeSize: 2.38 MB (2380288 bytes)
MD5: b61428e3c4269d027efbdc5faa4fd9bb
Detection count: 272
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_eaime-traceproviders\mshtmled.exe
Group: Malware file
Last Updated: August 4, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\wow64_microsoft-onecore-encdump_31bf3856ad364e35_10.0.16299.15_none_116f94af1a81147b\iconcodecservice.exe
File name: iconcodecservice.exeSize: 1.23 MB (1238528 bytes)
MD5: efe9381895f4ad774ab7198765b7a092
Detection count: 267
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\wow64_microsoft-onecore-encdump_31bf3856ad364e35_10.0.16299.15_none_116f94af1a81147b\iconcodecservice.exe
Group: Malware file
Last Updated: May 16, 2022
C:\MozillaFirefox\GoogleChrome.exe
File name: GoogleChrome.exeSize: 853.74 KB (853744 bytes)
MD5: 71d7cc4232004359497d095cef2e0705
Detection count: 258
File type: Executable File
Mime Type: unknown/exe
Path: C:\MozillaFirefox\GoogleChrome.exe
Group: Malware file
Last Updated: May 15, 2024
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_microsoft-windows-h..trolpanel.resources_31bf3856ad364e35_6.1.7600.16385_ru-ru_f6fc37af1df5771f\api-ms-win-core-file-l1-1-0.exe
File name: api-ms-win-core-file-l1-1-0.exeSize: 1.28 MB (1289728 bytes)
MD5: 218a62e607d28ea5a42cc03213a92d0b
Detection count: 244
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_microsoft-windows-h..trolpanel.resources_31bf3856ad364e35_6.1.7600.16385_ru-ru_f6fc37af1df5771f\api-ms-win-core-file-l1-1-0.exe
Group: Malware file
Last Updated: August 5, 2020
%APPDATA%\cmitros.exe
File name: cmitros.exeSize: 934.61 KB (934619 bytes)
MD5: fabcbfc15960635896030b260f67e16b
Detection count: 241
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: October 27, 2019
C:\Users\<username>\AppData\Roaming\x86_microsoft-windows-s..-binaries.resources\panmap.exe
File name: panmap.exeSize: 2.34 MB (2346992 bytes)
MD5: 69992599b5ee207df75648b221e149c5
Detection count: 239
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming\x86_microsoft-windows-s..-binaries.resources
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-d..wmanager-compositor_31bf3856ad364e35_6.2.9200.20733_none_5f0aac2ae21816a7\mprapi.exe
File name: mprapi.exeSize: 2.1 MB (2104320 bytes)
MD5: 4f8cbcb13c72ed759123c66f8e718092
Detection count: 222
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-d..wmanager-compositor_31bf3856ad364e35_6.2.9200.20733_none_5f0aac2ae21816a7\mprapi.exe
Group: Malware file
Last Updated: September 3, 2020
%APPDATA%\install\win32.exe
File name: win32.exeSize: 1.74 MB (1749309 bytes)
MD5: 76c84d2ba387eb73094f096e625be885
Detection count: 220
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\install
Group: Malware file
Last Updated: March 11, 2017
%SYSTEMDRIVE%\Users\<username>\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Startup_Message.exe
File name: Startup_Message.exeSize: 344.58 KB (344583 bytes)
MD5: d8e448baa292ce00b92d9229659550b0
Detection count: 213
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Startup_Message.exe
Group: Malware file
Last Updated: January 30, 2023
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-win32kbase.resources_31bf3856ad364e35_10.0.16299.15_ru-ru_8ccbded53c0fc9c7\samcli.exe
File name: samcli.exeSize: 1.23 MB (1239040 bytes)
MD5: d0dea3de07b39ee4974293a443c13e4d
Detection count: 208
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-win32kbase.resources_31bf3856ad364e35_10.0.16299.15_ru-ru_8ccbded53c0fc9c7\samcli.exe
Group: Malware file
Last Updated: August 4, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-nlasvc_31bf3856ad364e35_10.0.17134.1_none_4d06821e7414ab4f\dataexchange.exe
File name: dataexchange.exeSize: 979.45 KB (979456 bytes)
MD5: 45304ad75652bda5a66fc1b82b5ddaee
Detection count: 204
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-nlasvc_31bf3856ad364e35_10.0.17134.1_none_4d06821e7414ab4f\dataexchange.exe
Group: Malware file
Last Updated: August 4, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_mtconfig.inf.resources_31bf3856ad364e35_10.0.16299.15_ru-ru_e6c6d3ec87085a59\cabinet.exe
File name: cabinet.exeSize: 1.23 MB (1239552 bytes)
MD5: b42024e8825b76e080ff9a73cb30300d
Detection count: 199
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_mtconfig.inf.resources_31bf3856ad364e35_10.0.16299.15_ru-ru_e6c6d3ec87085a59\cabinet.exe
Group: Malware file
Last Updated: August 4, 2020
c:\Users\<username>\appdata\roaming\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.7601.18946_none_8382f002ed61108b\mf3216.exe
File name: mf3216.exeSize: 1.24 MB (1241600 bytes)
MD5: 9a47d2d646e5fae70a1384a3c0d60c6e
Detection count: 197
File type: Executable File
Mime Type: unknown/exe
Path: c:\Users\<username>\appdata\roaming\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.7601.18946_none_8382f002ed61108b
Group: Malware file
Last Updated: September 15, 2021
C:\Users\<username>\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Defender.exe
File name: Defender.exeSize: 4.55 MB (4552192 bytes)
MD5: d555641279f3f86681f806ae5c0c69c7
Detection count: 194
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Group: Malware file
Last Updated: August 15, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\wow64_microsoft-windows-t..lservices-workspace_31bf3856ad364e35_10.0.17763.1_none_cc0994a1e6a8f849\windows.security.integrity.exe
File name: windows.security.integrity.exeSize: 1.23 MB (1238528 bytes)
MD5: 0aa9eb070b6a57d8330e04c1a88ce471
Detection count: 192
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\wow64_microsoft-windows-t..lservices-workspace_31bf3856ad364e35_10.0.17763.1_none_cc0994a1e6a8f849\windows.security.integrity.exe
Group: Malware file
Last Updated: August 4, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-e..mmandline.resources_31bf3856ad364e35_10.0.17134.1_ru-ru_633aed85b16defdc\d3d8thk.exe
File name: d3d8thk.exeSize: 1.21 MB (1212416 bytes)
MD5: 26d69920fa43065b1762acf1b23af42b
Detection count: 190
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-e..mmandline.resources_31bf3856ad364e35_10.0.17134.1_ru-ru_633aed85b16defdc\d3d8thk.exe
Group: Malware file
Last Updated: April 8, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-m..cprovider.resources_31bf3856ad364e35_10.0.17134.1_en-us_bf95c9c4974efad0\uireng.exe
File name: uireng.exeSize: 1 MB (1001984 bytes)
MD5: 0075b29d8cbcccea4d9373ac72ea6a45
Detection count: 190
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-m..cprovider.resources_31bf3856ad364e35_10.0.17134.1_en-us_bf95c9c4974efad0\uireng.exe
Group: Malware file
Last Updated: October 5, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\user\app.exe
File name: app.exeSize: 1 MB (1007104 bytes)
MD5: 96980471407296eb5eb41762fb817c36
Detection count: 183
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\user
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_dot4prt.inf\nlsdata0009.exe
File name: nlsdata0009.exeSize: 1.59 MB (1599488 bytes)
MD5: 2d3f19e2e2e6074b3d7f12f8306f4553
Detection count: 180
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_dot4prt.inf\nlsdata0009.exe
Group: Malware file
Last Updated: August 4, 2020
%APPDATA%\Windows\winmgr54.exe
File name: winmgr54.exeSize: 2.2 MB (2202642 bytes)
MD5: 4dc75493ced00697002ec9a68b298d5f
Detection count: 178
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Windows
Group: Malware file
Last Updated: February 23, 2017
%APPDATA%\install\win32.exe
File name: win32.exeSize: 647.48 KB (647485 bytes)
MD5: 94b0f7a51c7987597c3433218c0a82b9
Detection count: 178
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\install
Group: Malware file
Last Updated: March 11, 2017
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_microsoft-windows-naturallanguage6-0022\cryptdlg.exe
File name: cryptdlg.exeSize: 2.66 MB (2668544 bytes)
MD5: 12bfb8030f170920a4cccca7fb38bf8c
Detection count: 176
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\x86_microsoft-windows-naturallanguage6-0022\cryptdlg.exe
Group: Malware file
Last Updated: August 5, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-i..l-keyboard-00000407_31bf3856ad364e35_10.0.16299.15_none_0cd77b51d3a647de\srmscan.exe
File name: srmscan.exeSize: 2.92 MB (2925056 bytes)
MD5: f5bec21229a03e06e361f315c9e68201
Detection count: 166
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-i..l-keyboard-00000407_31bf3856ad364e35_10.0.16299.15_none_0cd77b51d3a647de\srmscan.exe
Group: Malware file
Last Updated: August 4, 2020
d:\Users\<username>\appdata\roaming\wow64_microsoft-windows-shell32\synccenter.exe
File name: synccenter.exeSize: 1.87 MB (1878016 bytes)
MD5: 71426abb32eb43214f30045684a1da73
Detection count: 164
File type: Executable File
Mime Type: unknown/exe
Path: d:\Users\<username>\appdata\roaming\wow64_microsoft-windows-shell32\synccenter.exe
Group: Malware file
Last Updated: August 4, 2020
c:\Users\<username>\appdata\roaming\amd64_microsoft-windows-help-hgroupp.resources_31bf3856ad364e35_6.1.7600.16385_ru-ru_23d73403f2d9a340\netcfgx.exe
File name: netcfgx.exeSize: 1.24 MB (1248768 bytes)
MD5: 4085cc95041cccb2b0e4ed763f21036d
Detection count: 164
File type: Executable File
Mime Type: unknown/exe
Path: c:\Users\<username>\appdata\roaming\amd64_microsoft-windows-help-hgroupp.resources_31bf3856ad364e35_6.1.7600.16385_ru-ru_23d73403f2d9a340
Group: Malware file
Last Updated: September 15, 2021
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_netfx4-system.activities_b03f5f7f11d50a3a_4.0.15680.142_none_42c466b434a3deb3\cnvfat.exe
File name: cnvfat.exeSize: 1.14 MB (1143392 bytes)
MD5: 4816ac796a45528fd1cee186c9782b4d
Detection count: 155
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_netfx4-system.activities_b03f5f7f11d50a3a_4.0.15680.142_none_42c466b434a3deb3\cnvfat.exe
Group: Malware file
Last Updated: August 4, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-font-truetype-gabriola_31bf3856ad364e35_6.1.7601.17514_none_e65a866e9dc81eaf\nlsdata0027.exe
File name: nlsdata0027.exeSize: 1.23 MB (1239552 bytes)
MD5: ad24c488b66ffc1c1143e53c15559429
Detection count: 152
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft-windows-font-truetype-gabriola_31bf3856ad364e35_6.1.7601.17514_none_e65a866e9dc81eaf\nlsdata0027.exe
Group: Malware file
Last Updated: August 4, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft.virtualiz..ent.rdpclientaxhost_31bf3856ad364e35_10.0.17134.345_none_88eb0f84cbab8ff0\ole2nls.exe
File name: ole2nls.exeSize: 1.45 MB (1452000 bytes)
MD5: f411e12d006c0b6fc41b35b3cd0dda89
Detection count: 150
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_microsoft.virtualiz..ent.rdpclientaxhost_31bf3856ad364e35_10.0.17134.345_none_88eb0f84cbab8ff0\ole2nls.exe
Group: Malware file
Last Updated: August 4, 2020
%APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup\Javaw.exe
File name: Javaw.exeSize: 4.24 MB (4242707 bytes)
MD5: 278a3282b630c58118a13b964cd8e0b1
Detection count: 150
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup
Group: Malware file
Last Updated: December 17, 2016
C:\Users\<username>\AppData\Local\Temp\7zO81DB65C6\ARTE E COMUNICAÇÃO.exe
File name: ARTE E COMUNICAÇÃO.exeSize: 594.43 KB (594432 bytes)
MD5: 2a872f16fa3e592248c94e00f1f8d56d
Detection count: 148
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Local\Temp\7zO81DB65C6\ARTE E COMUNICAÇÃO.exe
Group: Malware file
Last Updated: August 25, 2022
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\wow64_windows-foundation-..ing-winrt.resources_31bf3856ad364e35_10.0.16299.15_en-us_ce7bfe8862eeade1\nvencmfthevc.exe
File name: nvencmfthevc.exeSize: 3.41 MB (3412992 bytes)
MD5: b120ac466da8d9b3ffd2f363b35afbbf
Detection count: 143
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\wow64_windows-foundation-..ing-winrt.resources_31bf3856ad364e35_10.0.16299.15_en-us_ce7bfe8862eeade1\nvencmfthevc.exe
Group: Malware file
Last Updated: August 4, 2020
%SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_wpf-xamlviewerapplicationmanifest_31bf3856ad364e35_10.0.17134.1_none_4e05c4063a06e2a2\dmime.exe
File name: dmime.exeSize: 1.3 MB (1303504 bytes)
MD5: 5da08a10765fe849b91e430c0f98fa48
Detection count: 143
File type: Executable File
Mime Type: unknown/exe
Path: %SYSTEMDRIVE%\Users\<username>\appdata\roaming\amd64_wpf-xamlviewerapplicationmanifest_31bf3856ad364e35_10.0.17134.1_none_4e05c4063a06e2a2\dmime.exe
Group: Malware file
Last Updated: August 4, 2020
C:\Users\<username>\AppData\Roaming\amd64_microsoft-windows-w..tion-classinstaller\dmutil.exe
File name: dmutil.exeSize: 1.96 MB (1964544 bytes)
MD5: 50103c518d5271b3e98a2d6eb8e0af4b
Detection count: 141
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming\amd64_microsoft-windows-w..tion-classinstaller
Group: Malware file
Last Updated: September 15, 2021