How to remove A0000120.exe

A0000120.exe

The module A0000120.exe has been detected as Worm.Ramnit

A0000120.exe
Remove A0000120.exe

File Details

Product Name:

Camtasia Player
Company Name:

TechSmith Corporation
MD5: 9dc38939037a20327805fe046a2dc65a
Size: 3 MB
First Published: 2018-04-15 08:11:21 (6 years ago)
Latest Published: 2018-04-15 08:11:23 (6 years ago)
Status: Worm.Ramnit (on last analysis)
Analysis Date: 2018-04-15 08:11:23 (6 years ago)

Common Places:

%sysdrive%\system volume information\_restore{31058c9c-927f-45ce-9d9c-3c152ab8e6e1}
%profile%\p\my documents\downloads

File Names:

A0002260.exe
A0000120.exe
A0004772.exe
CamPlay.exe
A0003700.exe

Geography:

100.0%

OS Version:

Windows XP 100.0%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00331000

PE Sections:

Name Size of data MD5
.text 167936 3e5bf7dc0e6f6f031e441bef19bf51c3
.rdata 40960 9504bfc0e7dfa109303deb59d383697f
.data 16384 c8421bf8748d8bb3de3453eb9a8faa93
.rsrc 81920 74eefcb0f3f1049362695820373d1b7b
.text 188416 6299f9784ba5a48ddc7a14e4de42d184
.text 188416 c5e2ef8818bf79536f4dd9adef5d9686
.text 188416 e507b1e4a3ed2fe1e83bf7c2a74a6289
.text 188416 38a7f97dc1841e57e81828bfd92a3f8c
.text 188416 647962af18d7b59ba66bf94213c43087
.text 188416 5f0f1b022801d3a7a95de32e3850ee2b
.text 188416 ed66bd35484a70b7625f126ce3fb6527
.text 188416 2d1fe93cd3ce271147bc4bbf5320d523
.text 188416 67adab890b0c9e9d53a0f8d3981a8197
.text 188416 f93557b7aa9006e18fff207f37ba44fc
.text 188416 1521382a084f18952b9bf16f4a99a221
.text 188416 c159030cde8226f5fe80b9e58600c961
.text 188416 ef7435480afbac248baff2a4b23a7772
.text 188416 82744abdd5aea028c21247605170c683
.text 188416 d3e780ee6ae2553dd45c55ed29e999e5
.text 188416 977e3956d6bf571b15eafc262fdd23f7
.text 167936 f95b36f4356a02457d850ddb84199b1c

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for A0000120.exe
copyright for information about A0000120.exe