How to remove D2AIHyZpN57axho60Y0rtPCM.exe

» File
File Details
Overview
Analysis

D2AIHyZpN57axho60Y0rtPCM.exe

The module D2AIHyZpN57axho60Y0rtPCM.exe has been detected as Ransom.STOP

D2AIHyZpN57axho60Y0rtPCM.exe

Remove D2AIHyZpN57axho60Y0r

File Details

Main Info:

Product Name:	Bomont
MD5:	49570006e2b4d813d70c67935b154d72
Size:	4 MB
First Published:	2024-05-04 23:01:42 (2 years ago)
Latest Published:	2024-06-14 23:01:39 (a year ago)

Analysis:

Status:	Ransom.STOP (on last analysis)
Analysis Date:	2024-06-14 23:01:39 (a year ago)

Overview

Digital Signature

Signed By:	5225102f0434382d242811523e2627225c0650271700133f52163721402002312055
Status:	Valid

Common Places:

%profile%

%localappdata%

%localappdata%

%profile%

%localappdata%

%profile%

%localappdata%

%profile%

%localappdata%

%localappdata%

Geography:

100.0%

OS Version:

Windows 10	54.1%
Windows 8	45.9%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00003b0b

PE Sections:

Name	Size of data	MD5
.text	59904	3ce45d849720ec0b7985fc8bf188c390
.rdata	28160	b46958e805be9d111ab52da78fd0effe
.data	4169728	35d47ea6526d92aa5830518efb1c2ba0
.rsrc	161280	f84069593061836f06b7af3270d4796b

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for D2AIHyZpN57axho60Y0rtPCM.exe

copyright for information about D2AIHyZpN57axho60Y0rtPCM.exe