How to remove $R9LJSBG.exe

» File
File Details
Overview
Analysis

$R9LJSBG.exe

The module $R9LJSBG.exe has been detected as Ransom.Zbot

$R9LJSBG.exe

Remove $R9LJSBG.exe

File Details

Main Info:

Product Name:	Shark's MediaInfo Tool
Company Name:	Shark007
MD5:	2529e3589f01fafd5270407ea953612e
Size:	9 MB
First Published:	2024-02-12 23:06:17 (2 years ago)
Latest Published:	2024-02-12 23:06:17 (2 years ago)

Analysis:

Status:	Ransom.Zbot (on last analysis)
Analysis Date:	2024-02-12 23:06:17 (2 years ago)

Common Places:

%sysdrive%\$recycle.bin

Geography:

100.0%

OS Version:

Windows 7

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x000294f4

PE Sections:

Name	Size of data	MD5
.text	327680	073570d321c49f2ae60378b3bd8f0fc4
.rdata	45056	7c485f2b02a81404867a54f1c8f7adf0
.data	94208	5c3a7cd7dd6d5050f9bb6c8c7fee3f21
.rsrc	1069056	793d4cef7dc63e062db2b2acb19bfac0

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for $R9LJSBG.exe

copyright for information about $R9LJSBG.exe