How to remove 50F7.exe
50F7.exe
The module 50F7.exe has been detected as Ransom.Wacatac
File Details
| Product Name: | Malwarebytes |
| Company Name: | Malwarebytes |
| MD5: | 975e2a8879c2d40e6db9704e75868e53 |
| Size: | 145 KB |
| First Published: | 2021-11-22 21:36:10 (4 years ago) |
| Latest Published: | 2021-11-22 21:36:10 (4 years ago) |
| Status: | Ransom.Wacatac (on last analysis) | |
| Analysis Date: | 2021-11-22 21:36:10 (4 years ago) |
Overview
| Signed By: | Skylum Software USA, Inc. |
| Status: | Invalid (digital signature could be stolen or file could be patched) |
Common Places:
| %temp% |
Geography:
| 100.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x00006e26 |
.NET Info:
| MVID: | 8e27ad8e-44b6-473e-8017-c22f8208a087 |
| Typelib ID: | 3b285c2a-3cb9-429d-922d-728c998140b4 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 20480 | 198438d4307dcf26dc1f984581f46707 |
| .rsrc | 119808 | b8c9d5a705c2da802bc031a2b0bb0606 |
| .reloc | 512 | 988161972ca84dfeb903b1035c5c194c |
More information:
Download GridinSoft
Anti-Malware - Removal tool for 50F7.exe
