How to remove 8U6HMQ4ZN4V1FL14H4NRJG5F1CEU.exe

» File
File Details
Overview
Analysis

8U6HMQ4ZN4V1FL14H4NRJG5F1CEU.exe

The module 8U6HMQ4ZN4V1FL14H4NRJG5F1CEU.exe has been detected as Ransom.Wacatac

8U6HMQ4ZN4V1FL14H4NRJG5F1CEU.exe

Remove 8U6HMQ4ZN4V1FL14H4NR

File Details

Main Info:

Product Name:	FreeCommander XE
Company Name:	Marek Jasinski
MD5:	4d05968f9891da5d6550df62f710ad31
Size:	30 MB
First Published:	2024-09-25 23:03:55 (10 months ago)
Latest Published:	2024-09-26 23:01:43 (10 months ago)

Analysis:

Status:	Ransom.Wacatac (on last analysis)
Analysis Date:	2024-09-26 23:01:43 (10 months ago)

Overview

Digital Signature

Signed By:	Marek Jasiński
Status:	Invalid (digital signature could be stolen or file could be patched)

Common Places:

%temp%

%commonappdata%

%temp%

%commonappdata%

%commonappdata%

%commonappdata%

Geography:

	66.7%
	33.3%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x011f1718

PE Sections:

Name	Size of data	MD5
.text	18776576	34c79b33f7528238acf788aef3d339b1
.itext	32256	64c0e03b49ee8ecf2700a7adecbd2b98
.data	496640	ec958e8ada551aed98ef1b5b4ecc16b6
.bss	0	d41d8cd98f00b204e9800998ecf8427e
.idata	26112	625cd1a7b985702fe72c59272a06682b
.didata	15872	100d44d892d863fd8da44a52eecbd431
.edata	512	c84ec4dcfd2eb42107c5df2cf2cd7c08
.tls	0	d41d8cd98f00b204e9800998ecf8427e
.rdata	512	3f25ca175b6fb433ab02fe537ece5566
.reloc	1196544	a88b3ef77cb5332fbb27056a6b4cb86b
.rsrc	11133440	09fedbaa405fe5e943281be58faad3e2

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for 8U6HMQ4ZN4V1FL14H4NRJG5F1CEU.exe

copyright for information about 8U6HMQ4ZN4V1FL14H4NRJG5F1CEU.exe