How to remove DeviceManager.exe.quarantined
- File Details
- Overview
- Analysis
DeviceManager.exe.quarantined
The module DeviceManager.exe.quarantined has been detected as Ransom.Gandcrab
File Details
MD5: |
c9d7b4f352a2362d676c850dc923f662 |
Size: |
292 KB |
First Published: |
2020-01-19 12:11:57 (5 years ago) |
Latest Published: |
2021-01-13 13:58:04 (4 years ago) |
Status: |
Ransom.Gandcrab (on last analysis) |
|
Analysis Date: |
2021-01-13 13:58:04 (4 years ago) |
%sysdrive%\file share |
%sysdrive%\file share |
%temp% |
Windows Server 2016 |
66.7% |
|
Windows 7 |
33.3% |
|
Analysis
Subsystem: |
Windows GUI |
PE Type: |
pe |
OS Bitness: |
32 |
Image Base: |
0x00400000 |
Entry Address: |
0x00005d17 |
Name |
Size of data |
MD5 |
.text |
70144 |
9c4c43a32480fa3c9fb5f12e0db6babc |
.data |
104448 |
f31429b91ddc6129871ae9671d298724 |
.mysec |
512 |
1e9a9f424b67a8d3166bed3d745e7a48 |
.mysec2 |
512 |
f209d1d67ac9dfd789e57a2cfed00792 |
.rsrc |
115200 |
81fd3f7b54d1331d9f190bc3505a5b94 |
.reloc |
7168 |
697903b60df6128aa9f2c85180df420d |