How to remove ZonaDoor

» File
File Details
Overview
Analysis

ZonaDoor

The module ZonaDoor has been detected as Ransom.Sabsik

ZonaDoor

Remove ZonaDoor

File Details

Main Info:

Product Name:	ZonaDoor
MD5:	d82f58a3a66392e427af0c1ed193a436
Size:	4 MB
First Published:	2023-06-11 23:50:34 (2 years ago)
Latest Published:	2023-06-14 23:56:22 (2 years ago)

Analysis:

Status:	Ransom.Sabsik (on last analysis)
Analysis Date:	2023-06-14 23:56:22 (2 years ago)

Overview

Digital Signature

Signed By:	522b1f00070a2734475a3201002b1c42301c1b0732151b1d231030330b0713013107
Status:	Valid

Common Places:

%sysdrive%\windows.old\users\josue\appdata\local\microsoft\windows\inetcache\ie

%temp%

%localappdata%\microsoft\windows\inetcache\ie

%temp%

%temp%

%localappdata%\microsoft\windows\inetcache\ie

%temp%

%temp%

Geography:

	25.0%
	25.0%
	12.5%
	12.5%
	12.5%
	12.5%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0000444e

PE Sections:

Name	Size of data	MD5
.text	4219904	d57882ba97a6b49ef3d4453576145dd8
.data	19968	c7330927a553d63321a3a5f766d77a60
.rsrc	48128	54f56b495b0ae9b8871129b14e821f69
.reloc	32768	75af74ab5abdf53f44be6f3ae3a6c556

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for ZonaDoor

copyright for information about ZonaDoor