How to remove DEF2.exe
DEF2.exe
The module DEF2.exe has been detected as Ransom.AzorUlt
File Details
| Product Name: | Circus |
| MD5: | 398ab69b1cdc624298fbc00526ea8aca |
| Size: | 1 MB |
| First Published: | 2024-02-27 23:06:40 (2 years ago) |
| Latest Published: | 2024-03-17 23:02:18 (2 years ago) |
| Status: | Ransom.AzorUlt (on last analysis) | |
| Analysis Date: | 2024-03-17 23:02:18 (2 years ago) |
Common Places:
| %temp% |
| %commonappdata% |
| %commonappdata% |
| %commonappdata% |
Geography:
| 50.0% | ||
| 25.0% | ||
| 25.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x000022ac |
PE Sections:
| Name | Size of data | MD5 |
| .text | 1872384 | 073192ed44550e0e1f892bb6c8fcf740 |
| .rdata | 22016 | ac09e9f59eaa9c06a442bf9a5c331ba2 |
| .data | 40960 | 63f994c3f9d1f6bb5cc7fda5125411e7 |
| .rsrc | 30208 | cd9a604195175f029aa9fc1bc24b383e |
More information:
Download GridinSoft
Anti-Malware - Removal tool for DEF2.exe
