How to remove 2DA5.exe

» File
File Details
Overview
Analysis

2DA5.exe

The module 2DA5.exe has been detected as Ransom.STOP

2DA5.exe

Remove 2DA5.exe

File Details

Main Info:

Product Name:	Jsdgazfu
MD5:	5cd356b432321b49f3bec0206666d175
Size:	774 KB
First Published:	2023-10-12 23:08:55 (2 years ago)
Latest Published:	2023-10-17 23:19:10 (2 years ago)

Analysis:

Status:	Ransom.STOP (on last analysis)
Analysis Date:	2023-10-17 23:19:10 (2 years ago)

Common Places:

%temp%

%temp%

%localappdata%

%localappdata%

%localappdata%

%temp%

Geography:

	66.7%
	16.7%
	16.7%

OS Version:

Windows 10	83.3%
Windows 7	16.7%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00005a13

PE Sections:

Name	Size of data	MD5
.text	744960	010152b8e81b02a1526810f9357f6b6a
.data	15360	d63c4d2e3ff243610747e7a41cfad50c
.papavoj	1024	0f343b0931126a20f133d67c2b018a3b
.dohu	1536	53e979547d8c2ea86560ac45de08ae25
.rsrc	28672	5e82cd3841dde635eff10fada6c647f0

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for 2DA5.exe

copyright for information about 2DA5.exe