How to remove 3A14.exe
3A14.exe
The module 3A14.exe has been detected as Ransom.AzorUlt
File Details
| Product Name: | Circus |
| MD5: | a1b5ee1b9649ab629a7ac257e2392f8d |
| Size: | 554 KB |
| First Published: | 2024-02-27 23:08:11 (2 years ago) |
| Latest Published: | 2024-05-27 23:02:10 (a year ago) |
| Status: | Ransom.AzorUlt (on last analysis) | |
| Analysis Date: | 2024-05-27 23:02:10 (a year ago) |
Common Places:
| %temp% |
| %temp% |
| %temp% |
| %temp% |
| %temp% |
| %temp% |
| %sysdrive%\system volume information\systemrestore\frstaging\users\helena\appdata\local |
| %temp% |
Geography:
| 25.0% | ||
| 12.5% | ||
| 12.5% | ||
| 12.5% | ||
| 12.5% | ||
| 12.5% | ||
| 12.5% |
OS Version:
| Windows 10 | 62.5% | |
| Windows 7 | 37.5% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x000027a7 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 472576 | 9a747ac05018b10695418d0ead75576f |
| .rdata | 22016 | b7b3f76cb35ff8d731f4e7b1b24e12ee |
| .data | 41472 | 28ad669518a9b64a41db07e40df5b862 |
| .rsrc | 30720 | 5d6df0ac60281a83493da7df5e8daeda |
More information:
Download GridinSoft
Anti-Malware - Removal tool for 3A14.exe
