How to remove WhereIsTall

» File
File Details
Overview
Analysis

WhereIsTall

The module WhereIsTall has been detected as Ransom.STOP

WhereIsTall

Remove WhereIsTall

File Details

Main Info:

Product Name:	WhereIsTall
MD5:	a34b1c1b3b48474f13a73c9bdfbe9e2e
Size:	4 MB
First Published:	2023-05-08 23:06:00 (2 years ago)
Latest Published:	2023-05-08 23:06:00 (2 years ago)

Analysis:

Status:	Ransom.STOP (on last analysis)
Analysis Date:	2023-05-08 23:06:00 (2 years ago)

Overview

Digital Signature

Signed By:	52201f2f18311d572f560b271a020721531729232121351c16372a14042518241f2d
Status:	Valid

Common Places:

%sysdrive%\windows.old\users\user\appdata\local\microsoft\windows\inetcache\ie

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00008955

PE Sections:

Name	Size of data	MD5
.text	87040	cd2bae1a9f86fb70c0b9fb138fc2e3bf
.data	4172800	03b4eb16b5f5826b1097418408f0871d
.xixi	6144	ff1ce2018aa17fe600fca636b126dbe4
.rsrc	61952	b1ce24600488766cc02009b8025d741d

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for WhereIsTall

copyright for information about WhereIsTall