How to remove BaLCo.dll
BaLCo.dll
The module BaLCo.dll has been detected as Worm.Ramnit
File Details
| Product Name: | Canon Inc. BaLCo |
| Company Name: | Canon Inc. |
| MD5: | c3e3edbddb9ab8146a0e1f61277dbfa9 |
| Size: | 164 KB |
| First Published: | 2021-01-09 11:58:11 (4 years ago) |
| Latest Published: | 2021-01-09 11:58:11 (4 years ago) |
| Status: | Worm.Ramnit (on last analysis) | |
| Analysis Date: | 2021-01-09 11:58:11 (4 years ago) |
Common Places:
| %sysdrive%\new folder (4)\new folder\data backup\double driver backup\mura-c8552657ec 2-18-2012 7-05-10 pm\image\canoscan lide 25 |
Geography:
| 100.0% |
OS Version:
| Windows 7 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x10000000 |
| Entry Address: | 0x0000f000 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 28672 | 147207c23425026b95fbcf37a5627682 |
| .rdata | 4096 | ce788d99b1d2e01521785e7a7196a1f7 |
| .data | 12288 | 35757252f673ad9d24c14b211a965ed8 |
| .rsrc | 4096 | 600eeb9df87313e18af4e231bd57e405 |
| .reloc | 4096 | 92170c7bd4ac859282beb334cd0e715b |
| .text | 110592 | 32f4a3be6917fadf18c1153078f8d35c |
More information:
Download GridinSoft
Anti-Malware - Removal tool for BaLCo.dll
