How to remove CATRTCChildProcess.exe

CATRTCChildProcess.exe

The module CATRTCChildProcess.exe has been detected as Ransom.Wacatac

CATRTCChildProcess.exe
Remove CATRTCChildProcess.e

File Details

Product Name:

Dassault Systemes Product
Company Name:

Dassault Systemes
MD5: 0e3b26f1cf6e7f285a1756945736f21d
Size: 11 KB
First Published: 2021-11-14 21:56:54 (3 years ago)
Latest Published: 2023-08-29 23:01:48 (a year ago)
Status: Ransom.Wacatac (on last analysis)
Analysis Date: 2023-08-29 23:01:48 (a year ago)

Common Places:

%programfiles%\dassault systemes\b21\intel_a\code
%programfiles%\dassault systemes\b21\intel_a\code
%programfiles%\dassault systemes\b21\intel_a\code

Geography:

33.3%
33.3%
33.3%

OS Version:

Windows 10 100.0%

Analysis

Subsystem: Windows CUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000015bc

PE Sections:

Name Size of data MD5
.text 3072 bab357e3f875ebf544b82088d225011a
.rdata 3072 fd9d840970b428f6e25ecff632471edf
.data 512 a132cefec63406c71364de7d3f6706d9
.rsrc 2560 29852c27a2876fdf9be88ccb21554671
.reloc 1024 25f01c9869bca6b6fd3bc43943d68bcd

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for CATRTCChildProcess.exe
copyright for information about CATRTCChildProcess.exe