How to remove 5214021.scr

» File
File Details
Overview
Analysis

5214021.scr

The module 5214021.scr has been detected as Ransom.Sabsik

5214021.scr

Remove 5214021.scr

File Details

Main Info:

Product Name:	瑞昱高傳真音效
Company Name:	Realtek Semiconductor
MD5:	81218e8e81c2a9421a6677f67f51f116
Size:	3 MB
First Published:	2021-09-17 20:39:17 (4 years ago)
Latest Published:	2021-09-17 20:39:17 (4 years ago)

Analysis:

Status:	Ransom.Sabsik (on last analysis)
Analysis Date:	2021-09-17 20:39:17 (4 years ago)

Overview

Digital Signature

Signed By:	Bitcoin Core Code Signing Association
Status:	Invalid (digital signature could be stolen or file could be patched)

Common Places:

%appdata%

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows CUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0050de98

PE Sections:

Name	Size of data	MD5
	84992	c8ee8ac9bbafce7ed09c63dfa5e6c1d7
	2048	54d3139ac06ae8699036d06800578c74
Nikon \|	329216	0afd1ebfbe14c6391ed6c15d535c7874
	512	2e80c102bf3394438afb715d8eb8c47c
.idata	512	c320f0e8f2ee037689b1f85f0071f560
.themida	0	d41d8cd98f00b204e9800998ecf8427e
.boot	2075648	78359a64ad4853ff7de6389b3dddb430
Nikon \|	2560	8117ddd93faec3cb528504a09d95a99b
Nikon \|	2560	7c80e85bf3f8a9335d37ca0f649af346
Nikon \|	2560	2bc12820f7cf1fd080409d1af1e2c020
Nikon \|	2560	040ffb1e35d5ddeed365ebfcbd88f7d4
Nikon \|	2560	f8050c028edd2ccf10be5f8a0ae94519
Nikon \|	2560	18fa7fb8ff7d1aa96795bdc58992b115
Nikon \|	2560	cd5b91c9f39faf4f685e99ca6ea8c97e
.rsrc	1073152	8047299c40fe13691894f824d7acad83

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for 5214021.scr

copyright for information about 5214021.scr