How to remove 784LJ.exe

» File
File Details
Overview
Analysis

784LJ.exe

The module 784LJ.exe has been detected as Ransom.Sabsik

784LJ.exe

Remove 784LJ.exe

File Details

Main Info:

Product Name:	Glary Utilities 5
Company Name:	Glarysoft Ltd
MD5:	3bc5455bbaf1167a432d9bba61ae81c1
Size:	1 MB
First Published:	2022-03-16 23:26:15 (3 years ago)
Latest Published:	2022-03-20 23:57:03 (3 years ago)

Analysis:

Status:	Ransom.Sabsik (on last analysis)
Analysis Date:	2022-03-20 23:57:03 (3 years ago)

Overview

Digital Signature

Signed By:	eVenture Limited
Status:	Invalid (digital signature could be stolen or file could be patched)

Common Places:

%temp%

%temp%

%sysdrive%\windows.old\users\user\appdata\local

%sysdrive%\windows.old\users\user\appdata\local

%sysdrive%\windows.old\users\user\appdata\local

%sysdrive%\windows.old\users\user\appdata\local

%sysdrive%\windows.old\users\user\appdata\local

%sysdrive%\windows.old\users\user\appdata\local

%sysdrive%\windows.old\users\user\appdata\local

%sysdrive%\windows.old\users\user\appdata\local

Geography:

	90.9%
	9.1%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00221000

PE Sections:

Name	Size of data	MD5
.idata	0	d41d8cd98f00b204e9800998ecf8427e
.rdata	512	12a33c51e2e4a4687e9852c93fe72481
.rsrc	1265671	725474a888fe43cabc48f02001af6463
.didata	96682	4d66282ab7829bb850818ae8925799a6

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for 784LJ.exe

copyright for information about 784LJ.exe