How to remove 478470d0.rbf

» File
File Details
Overview
Analysis

478470d0.rbf

The module 478470d0.rbf has been detected as Ransom.STOP

478470d0.rbf

Remove 478470d0.rbf

File Details

Main Info:

Product Name:	Catalyst??? Control Center
Company Name:	Advanced Micro Devices Inc.
MD5:	1160944590b977488ff6ce7431321da4
Size:	8 KB
First Published:	2017-10-10 17:11:53 (7 years ago)
Latest Published:	2023-12-24 23:25:46 (a year ago)

Analysis:

Status:	Ransom.STOP (on last analysis)
Analysis Date:	2023-12-24 23:25:46 (a year ago)

Common Places:

%sysdrive%\config.msi

%programfiles%\ati technologies\ati.ace

Geography:

	50.0%
	50.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows CUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x64a00000
Entry Address:	0x0000350e

.NET Info:

MVID:

7d04959e-aa0c-4b54-8219-6cacde038fad

PE Sections:

Name	Size of data	MD5
.text	5632	c96aad9c1a4a326856cd352703fd941e
.rsrc	1536	5d64e91f97e24faf27367e1e7c9a775a
.reloc	512	b898aa7276d2a0d0e4c7ea7336715be5

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for 478470d0.rbf

copyright for information about 478470d0.rbf