How to remove 1Ze3CV%Y(.exe
- File Details
- Overview
- Analysis
1Ze3CV%Y(.exe
The module 1Ze3CV%Y(.exe has been detected as Ransom.Banker
File Details
| MD5: |
47254d0caeee3cb3e5cf4266a0195524 |
| Size: |
203 KB |
| First Published: |
2025-11-04 23:01:16 (2 weeks ago) |
| Latest Published: |
2025-11-04 23:01:21 (2 weeks ago) |
| Status: |
Ransom.Banker (on last analysis) |
|
| Analysis Date: |
2025-11-04 23:01:21 (2 weeks ago) |
| %localappdata% |
| %localappdata% |
| %temp% |
| %localappdata% |
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000140000000 |
| Entry Address: |
0x0000f5b0 |
| Name |
Size of data |
MD5 |
| .text |
135168 |
47a03198382f56e752aa8211eacf95e7 |
| .rdata |
47104 |
b6409460faa72fc93cf49c039a11de11 |
| .data |
8704 |
dbcf5166949d71ac075f7804abde6921 |
| .pdata |
9216 |
805f49a4b2cb3e1e2cd23599c4eef4eb |
| .reloc |
6656 |
7f38762a96b30e3409263774051dee3b |
