How to remove 5989.exe
5989.exe
The module 5989.exe has been detected as Ransom.STOP
File Details
| Product Name: | Jadezku |
| MD5: | f2407b2a07566c09b99f45fe1b2cb1d5 |
| Size: | 262 KB |
| First Published: | 2023-10-19 23:21:52 (2 years ago) |
| Latest Published: | 2023-10-19 23:21:52 (2 years ago) |
| Status: | Ransom.STOP (on last analysis) | |
| Analysis Date: | 2023-10-19 23:21:52 (2 years ago) |
Common Places:
| %temp% |
Geography:
| 100.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x000056c5 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 229376 | aa15c42a56b27c2661b77217b7bed2f6 |
| .data | 6656 | d695296fed10e9b92b6b806f6148426c |
| .kes | 1024 | 0f343b0931126a20f133d67c2b018a3b |
| .wesiwo | 1536 | 53e979547d8c2ea86560ac45de08ae25 |
| .rsrc | 29184 | 878b35d23fe21bb94890518ea10d54d2 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for 5989.exe
