How to remove ddwm.exe
ddwm.exe
The module ddwm.exe has been detected as Trojan.PowerShell
File Details
| Product Name: | ScanGuardR |
| Company Name: | SecuritySync Systems Co. |
| MD5: | ec95776d7f11581f48c622f8167f082e |
| Size: | 1023 MB |
| First Published: | 2024-07-08 23:02:10 (a year ago) |
| Latest Published: | 2024-07-24 23:01:51 (a year ago) |
| Status: | Trojan.PowerShell (on last analysis) | |
| Analysis Date: | 2024-07-24 23:01:51 (a year ago) |
Common Places:
| %appdata%\bin |
| %appdata%\bin |
Geography:
| 100.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x01000000 |
| Entry Address: | 0x00006af8 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 44032 | 3b403814120e4fc54404a219d7d20e94 |
| .data | 1536 | f3764284f4d25ed35f75b9c16e1ab608 |
| .rsrc | 980480 | d5d593b28585f5e35e7ce614a8b89edb |
| .reloc | 3584 | bc74eb2a181cf1029262828db6ac5b5d |
More information:
Download GridinSoft
Anti-Malware - Removal tool for ddwm.exe
