How to remove CrystalCPUID.exe
- File Details
- Overview
- Analysis
CrystalCPUID.exe
The module CrystalCPUID.exe has been detected as Ransom.Wacatac
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
186100729765493ad629f9a0ab893841 |
| Size: |
804 KB |
| First Published: |
2024-03-24 23:16:58 (2 years ago) |
| Latest Published: |
2024-03-24 23:16:58 (2 years ago) |
| Status: |
Ransom.Wacatac (on last analysis) |
|
| Analysis Date: |
2024-03-24 23:16:58 (2 years ago) |
| %sysdrive%\apps\crystalcpuid\app |
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00056b2f |
| Name |
Size of data |
MD5 |
| .text |
483328 |
175daaadcb67decbfbe4f724e10ef835 |
| .rdata |
81920 |
9d0a46a9c6ad77f750f6c1c24453aa3c |
| .data |
61440 |
af6229f7f051d88744eda6efabbba864 |
| .rsrc |
192512 |
c485fac14638d5d09dac1df3cc710ebc |
