How to remove 9989.exe
9989.exe
The module 9989.exe has been detected as Trojan.Sabsik
File Details
| Product Name: | paint.net Setup |
| MD5: | 2eb4094a41a18f1c549c3365e34b1ec5 |
| Size: | 2 MB |
| First Published: | 2021-09-23 20:06:41 (4 years ago) |
| Latest Published: | 2021-09-23 20:06:41 (4 years ago) |
| Status: | Trojan.Sabsik (on last analysis) | |
| Analysis Date: | 2021-09-23 20:06:41 (4 years ago) |
Overview
| Signed By: | Acer Aspire C24-963 DQ.BEQER.001 |
| Status: | Valid |
Common Places:
| %temp% |
Geography:
| 100.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x003fdef0 |
PE Sections:
| Name | Size of data | MD5 |
| 95232 | 312481b90e61a8f501719f9e524ed145 | |
| 14" IPS | 265216 | 78f0c9e2445bb442dfb2b31fc0f02f4d |
| 512 | f31834e6ab4f46ab24bf8fc2a1997130 | |
| .idata | 512 | 39cfe5d9a509f80df7f2a625605caa0e |
| .themida | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .boot | 1996800 | fdb87bb01b49568b2d0d6c419606b21b |
| 14" IPS | 2560 | 6d4319a118d8c42b5b84dc48f7d7923e |
| 14" IPS | 2560 | ace0646b876bf5f8dcf9252399299039 |
| 14" IPS | 2560 | 8bf7a389c521d859c0f7939b4945d47a |
| 14" IPS | 2560 | 97a79bc9f025cfc34a9c5080a3ba9487 |
| 14" IPS | 2560 | 5ca012c7cd83eac183fe4b637c28f244 |
| 14" IPS | 2560 | bd9ea117eeb71df192fa6d720efb56ef |
| 14" IPS | 2560 | 8686b70b55c50b779aaf86e5d47427ad |
| 14" IPS | 2560 | 396bfa9b06cde57df3a7a85245cc4060 |
| 14" IPS | 2560 | 742ba80a6c1d78396997dd0d8f3aa68e |
| 14" IPS | 2560 | e8eb725f8b626634142c7a7e5dcfe61b |
| .rsrc | 268288 | 031d54ecaa9ff62479a62a1770e00957 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for 9989.exe
