How to remove 1f1affdcb7b7175e077b359abc7bbb4e.zip
- File Details
- Overview
- Analysis
1f1affdcb7b7175e077b359abc7bbb4e.zip
The module 1f1affdcb7b7175e077b359abc7bbb4e.zip has been detected as Ransom.Zpevdo
File Details
| MD5: |
1f1affdcb7b7175e077b359abc7bbb4e |
| Size: |
6 MB |
| First Published: |
2020-01-14 12:24:57 (5 years ago) |
| Latest Published: |
2021-01-01 12:09:41 (4 years ago) |
| Status: |
Ransom.Zpevdo (on last analysis) |
|
| Analysis Date: |
2021-01-01 12:09:41 (4 years ago) |
| %localappdata%\innovative solutions\drivermax\agent |
| %localappdata%\innovative solutions\drivermax\agent |
| %localappdata%\innovative solutions\drivermax\agent |
| %localappdata%\innovative solutions\drivermax\agent |
| %localappdata%\innovative solutions\drivermax\agent |
| %localappdata%\innovative solutions\drivermax\agent |
| %sysdrive%\windows.old\users\funtastiger\appdata\local\innovative solutions\drivermax\agent |
| %localappdata%\innovative solutions\drivermax\agent |
| %localappdata%\innovative solutions\drivermax\agent |
| %localappdata%\innovative solutions\drivermax\agent |
|
20.0% |
|
|
16.0% |
|
|
8.0% |
|
|
8.0% |
|
|
8.0% |
|
|
8.0% |
|
|
4.0% |
|
|
4.0% |
|
|
4.0% |
|
|
4.0% |
|
|
4.0% |
|
|
4.0% |
|
|
4.0% |
|
|
4.0% |
|
| Windows 10 |
84.0% |
|
| Windows 7 |
8.0% |
|
| Windows 8.1 |
4.0% |
|
| Windows Vista |
4.0% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0001da8b |
| Name |
Size of data |
MD5 |
| .text |
166912 |
06c96275e6ee6660732df41e3f60e7fe |
| .rdata |
20992 |
a24b84a8f316720ac0a495805d407231 |
| .data |
5632 |
97b33de4f6c0dd8a60e7648d167a1c55 |
| .rsrc |
17920 |
751c4b05e26905d06665066cd00d8fd0 |
