How to remove $RF3K8N0.exe

$RF3K8N0.exe

The module $RF3K8N0.exe has been detected as Ransom.Sabsik

$RF3K8N0.exe
Remove $RF3K8N0.exe

File Details

Product Name:

Cobian Backup 11 Gravity - Decompressor
Company Name:

Luis Cobian, CobianSoft
MD5: 58ba9231e8e0ead087b56ba9bebae02b
Size: 6 MB
First Published: 2023-05-03 23:04:06 (2 years ago)
Latest Published: 2023-05-03 23:04:06 (2 years ago)
Status: Ransom.Sabsik (on last analysis)
Analysis Date: 2023-05-03 23:04:06 (2 years ago)

Overview

Signed By: HDD Verbatim Digital EVO-II 5Tb HDWG460EZSTA N300 (10200rpm) 6072Mb 1.5 Rtl
Status: Valid

Common Places:

%sysdrive%\$recycle.bin

Geography:

100.0%

OS Version:

Windows 10 100.0%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00937486

PE Sections:

Name Size of data MD5
.text 0 d41d8cd98f00b204e9800998ecf8427e
.rdata 0 d41d8cd98f00b204e9800998ecf8427e
.data 0 d41d8cd98f00b204e9800998ecf8427e
.vmp0 0 d41d8cd98f00b204e9800998ecf8427e
.vmp1 7017472 ddac694a81ec140b52a4362be9f72e16
.reloc 1536 b02a33b930b054b9ca607a00bbcc475c
.rsrc 5120 58697db90531abaa9c7a668ad133eb90

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for $RF3K8N0.exe
copyright for information about $RF3K8N0.exe