How to remove 98BE.exe
98BE.exe
The module 98BE.exe has been detected as Ransom.Wacatac
File Details
| Product Name: | TCDirectChat |
| Company Name: | N-able Take Control |
| MD5: | 4be5a605c895baa84294466875582764 |
| Size: | 5 MB |
| First Published: | 2023-06-14 23:20:55 (2 years ago) |
| Latest Published: | 2023-07-03 23:17:32 (2 years ago) |
| Status: | Ransom.Wacatac (on last analysis) | |
| Analysis Date: | 2023-07-03 23:17:32 (2 years ago) |
Common Places:
| %temp% |
| %temp% |
| %temp% |
| %temp% |
| %temp% |
| %temp% |
| %temp% |
| %temp% |
| %temp% |
| %temp% |
Geography:
| 26.3% | ||
| 26.3% | ||
| 21.1% | ||
| 10.5% | ||
| 10.5% | ||
| 5.3% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x007c8d4b |
PE Sections:
| Name | Size of data | MD5 |
| .text | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .rdata | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .data | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .pdata | 0 | d41d8cd98f00b204e9800998ecf8427e |
| _RDATA | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .vmp;""@ | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .vmp;""@ | 3072 | a95f51826137ed55739be440a96b753c |
| .vmp;""@ | 5959680 | a3c62cd78171bf549d42c6d311623c3b |
| .reloc | 512 | ce59d95be4db40051c0f7d25272ee6f7 |
| .rsrc | 113152 | f627306032f6a0e629932db067c03984 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for 98BE.exe
