How to remove 7CF5.exe
7CF5.exe
The module 7CF5.exe has been detected as Ransom.Sabsik
File Details
| Product Name: | Process Explorer |
| Company Name: | Sysinternals - www.sysinternals.com |
| MD5: | 8c13a8e2e5d004fafd0c6251a3d7e9d0 |
| Size: | 7 MB |
| First Published: | 2024-04-30 23:00:55 (a year ago) |
| Latest Published: | 2024-04-30 23:00:55 (a year ago) |
| Status: | Ransom.Sabsik (on last analysis) | |
| Analysis Date: | 2024-04-30 23:00:55 (a year ago) |
Common Places:
| %temp% |
Geography:
| Paraguay | 100.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x000014c0 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 3397632 | 106a68ba29be8a8c51fda2a6596400d3 |
| .data | 330240 | 536b601cc385058761c6198c15ed30a6 |
| .rdata | 4148736 | a89492d27d3d5d2e03fb5647b099c7e6 |
| .pdata | 92160 | a437c7a1a7793f7ebb85511e52ca118d |
| .xdata | 3584 | bd194e818780800e50bbe32ef270f730 |
| .bss | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .edata | 512 | 07fdce9bb2d8d26d718bf2b05f92a5e6 |
| .idata | 5120 | fcf7456c5278ce50a1b7d084c7919392 |
| .CRT | 512 | d236474c71e258a26f128917340dc205 |
| .tls | 512 | bf619eac0cdf3f68d496ea9344137e8b |
| .rsrc | 20480 | 9cd9c3ce8373dbddcbcfadac530d7324 |
| .reloc | 69632 | a8e1ab2b553e9a55efa02e86b2f48496 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for 7CF5.exe
