How to remove 29DA.exe
29DA.exe
The module 29DA.exe has been detected as Ransom.STOP
File Details
| Product Name: | SteamTrain |
| Company Name: | DevilOffice |
| MD5: | dc97009e9edf1108d56c15c8c81d9f0c |
| Size: | 751 KB |
| First Published: | 2023-04-02 23:18:57 (2 years ago) |
| Latest Published: | 2023-04-02 23:24:10 (2 years ago) |
| Status: | Ransom.STOP (on last analysis) | |
| Analysis Date: | 2023-04-02 23:24:10 (2 years ago) |
Common Places:
| %localappdata% |
| %temp% |
Geography:
| 100.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x00003e37 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 87552 | c89f6b857f476a82e482bbcfb6e1090c |
| .data | 610304 | 68d1c43a36ad2ac5b3a07bd8a100c3f5 |
| .rsrc | 70656 | 32d4a30263601b8809b4443fce5c5d8c |
More information:
Download GridinSoft
Anti-Malware - Removal tool for 29DA.exe
