How to remove A0045782.exe

» File
File Details
Overview
Analysis

A0045782.exe

The module A0045782.exe has been detected as Worm.Ramnit

A0045782.exe

Remove A0045782.exe

File Details

Main Info:

Product Name:	FileManager Application
MD5:	f874ffc02df8005756d0dc330a908a5d
Size:	1 MB
First Published:	2018-04-15 08:11:32 (6 years ago)
Latest Published:	2018-04-15 08:11:50 (6 years ago)

Analysis:

Status:	Worm.Ramnit (on last analysis)
Analysis Date:	2018-04-15 08:11:50 (6 years ago)

Common Places:

%sysdrive%\งานกู้ 240658\root\program files

%sysdrive%\งานกู้ 240658\root\system volume information\_restore{1cb86707-6330-47ef-9d8f-939014171a0b}

File Names:

FileManager.exe

A0045782.exe

Geography:

100.0%

OS Version:

Windows XP

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x001bd000

PE Sections:

Name	Size of data	MD5
.text	206336	cdf6d7b93d3a38cc8fabf4566af9fc5e
.rdata	55296	843888de667ad3ca9df121d00437b4de
.data	9216	ec4295944f6b726d505297e0213ad6dc
.rsrc	20480	f3796721cf63190bbbf46ee244d082e4
.text	186880	fb212cbfeb4f899fafbdea1ac6589d2e
.text	186880	4f7dc469346c8c1733654177b12a55ba
.text	186880	3ea2245749d214adb98f7664a6b9742a
.text	186880	2aeceafaa632af0b9e0854040a503408
.text	186880	668e94f79a6bddd5679b2b51c5ed4461
.text	186880	4e706765fd41fe04fb494f56957a1e19
.text	186880	e8d4ea56e2ebb330a8e9fb7d7b7691c2
.text	186880	82cd7a9c181fefbead4182ed33cfc521
.text	166400	18ce3fbcc35e8a786b4002c4b92b0755

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for A0045782.exe

copyright for information about A0045782.exe