How to remove D937.exe
D937.exe
The module D937.exe has been detected as Ransom.STOP
File Details
| Product Name: | SweetTheRock |
| MD5: | ef78227385212e695aad69ebf4cf57f0 |
| Size: | 811 KB |
| First Published: | 2023-06-28 23:53:05 (2 years ago) |
| Latest Published: | 2023-06-28 23:53:05 (2 years ago) |
| Status: | Ransom.STOP (on last analysis) | |
| Analysis Date: | 2023-06-28 23:53:05 (2 years ago) |
Common Places:
| %sysdrive%\windows.old\users\henry mora\appdata\local |
Geography:
| 100.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x00005b40 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 658432 | 5a5062d77889dcc5afd6dd3cb3443354 |
| .data | 16384 | 4ba9150cc40bc234d66269d801550372 |
| .rsrc | 133632 | 6998c1b51324af14f6d4aae34d48e859 |
| .reloc | 20992 | bc00aad0ac65f78fb1a613ab49a6b923 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for D937.exe
