How to remove B0F6.exe
B0F6.exe
The module B0F6.exe has been detected as Ransom.Wacatac
File Details
| Product Name: | groundshift-install-master |
| Company Name: | FullGear Automatic Industrial Machine |
| MD5: | d55dd5cb39d9a5d93f3392dbac8eb97e |
| Size: | 7 MB |
| First Published: | 2024-03-25 23:04:11 (2 years ago) |
| Latest Published: | 2024-03-25 23:04:11 (2 years ago) |
| Status: | Ransom.Wacatac (on last analysis) | |
| Analysis Date: | 2024-03-25 23:04:11 (2 years ago) |
Common Places:
| %temp% |
Geography:
| 100.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x000014c0 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 2924032 | a8875bc036bab414a772b348990e2828 |
| .data | 325632 | 3f3ce4041bda15743fac81129f70e4e0 |
| .rdata | 4194304 | 2173033156b7a6800c67a45e4e67fd78 |
| .pdata | 72192 | 66df3f1f6efffc1691699240c853aa77 |
| .xdata | 3584 | 58f44025a8ba227fcf5dd0a0a13e735d |
| .bss | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .edata | 512 | 716cc7dd3ac119bd72f47c724925523a |
| .idata | 5632 | 65f4e4e32f129f569fa3d3b58ec924d9 |
| .CRT | 512 | f35057de9139136f4c93e3476a868c13 |
| .tls | 512 | bf619eac0cdf3f68d496ea9344137e8b |
| .rsrc | 112640 | 9fd0af938b8a3269260290594576c02b |
| .reloc | 64000 | 439911b32b20359407ca27fb3b82916c |
More information:
Download GridinSoft
Anti-Malware - Removal tool for B0F6.exe
