How to remove 5638.exe
5638.exe
The module 5638.exe has been detected as Ransom.Sabsik
File Details
| Product Name: | SketchUp Common Preferences |
| Company Name: | Trimble, Inc. |
| MD5: | ef75114869d1d7dd617dd82c9cbdbcd9 |
| Size: | 5 MB |
| First Published: | 2022-11-07 23:47:22 (2 years ago) |
| Latest Published: | 2022-11-07 23:47:22 (2 years ago) |
| Status: | Ransom.Sabsik (on last analysis) | |
| Analysis Date: | 2022-11-07 23:47:22 (2 years ago) |
Common Places:
| %temp% |
Geography:
| 100.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x006f0531 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .rdata | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .data | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .CRT | 512 | 3f3f0e182f6d9d6a7931b8296086c290 |
| .xyz0 | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .xyz1 | 1024 | 2e95198dbf157f0b2212dfaff0a46b2a |
| .xyz2 | 6118400 | 1a34ad2753f9857ddf7164d24f3f5ad2 |
| .rsrc | 36352 | a084fa3295c608ec5fab9abdb1cb5f5c |
More information:
Download GridinSoft
Anti-Malware - Removal tool for 5638.exe
