How to remove A0045516.exe

» File
File Details
Overview
Analysis

A0045516.exe

The module A0045516.exe has been detected as Worm.Ramnit

A0045516.exe

Remove A0045516.exe

File Details

Main Info:

Company Name:	AMS Software
MD5:	fb85d468bc3910f20c7fde948e5ab468
Size:	3 MB
First Published:	2018-04-15 08:11:35 (6 years ago)
Latest Published:	2018-04-15 08:11:48 (6 years ago)

Analysis:

Status:	Worm.Ramnit (on last analysis)
Analysis Date:	2018-04-15 08:11:48 (6 years ago)

Common Places:

%sysdrive%\งานกู้ 240658\root\program files

%sysdrive%\งานกู้ 240658\root\system volume information\_restore{1cb86707-6330-47ef-9d8f-939014171a0b}

File Names:

Framing Studio.exe

A0045516.exe

Geography:

100.0%

OS Version:

Windows XP

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00379000

PE Sections:

Name	Size of data	MD5
CODE	2201088	ebeb59de2cd923066f62d2bda1c4dd55
DATA	106496	1b932cf624328a28f9972d67228d33aa
BSS	0	00000000000000000000000000000000
.idata	11776	6a81f85643871701967bb2dca36fbb1c
.tls	0	00000000000000000000000000000000
.rdata	512	d71f7de9f5e4023d70f04bbd12b7f09d
.reloc	98816	b4c4c4bd7b99d757f19fab2993e42442
.rsrc	538112	0e60fbf6f205043a394c0720f7707a39
.ODATA	20480	e0a15bbf7b4eb015acac353c4d340ac2
.text	186880	ac9af5ce1b3a6d7d32d4ab5ea7ed8626
.text	186880	1d173d15484925e6e10d8ffdf1ec15d4
.text	186880	2fc215b92513a45ad45e5b33bd245262
.text	166400	0a170b4a936106ade10f6ff69165d347

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for A0045516.exe

copyright for information about A0045516.exe