How to remove 97555105963739466864.exe

» File
File Details
Overview
Analysis

97555105963739466864.exe

The module 97555105963739466864.exe has been detected as Ransom.Wacatac

97555105963739466864.exe

Remove 97555105963739466864

File Details

Main Info:

Product Name:	Application
Company Name:	Schneider Electric SE
MD5:	81c806429a6892f9f8cfc6b8bb041b6a
Size:	213 KB
First Published:	2023-06-18 23:01:31 (2 years ago)
Latest Published:	2023-06-18 23:01:38 (2 years ago)

Analysis:

Status:	Ransom.Wacatac (on last analysis)
Analysis Date:	2023-06-18 23:01:38 (2 years ago)

Overview

Digital Signature

Signed By:	Wondershare Technology Group Co.,Ltd
Status:	Invalid (digital signature could be stolen or file could be patched)

Common Places:

%commonappdata%

%commonappdata%

%commonappdata%

Geography:

100.0%

OS Version:

Windows 7

100.0%

Analysis

PE Info:

Subsystem:	Windows CUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00005700

PE Sections:

Name	Size of data	MD5
.text	45568	dc7936c58b28716fec0d347ad1706748
.rdata	11776	1486e7c1d8df78127dc5278d416f4c99
.data	137216	11aa228403683845998de9da5a0a190f
.rsrc	2048	16fe58f31e64e0cfd4f26d9808c2ddad

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for 97555105963739466864.exe

copyright for information about 97555105963739466864.exe