How to remove DeviceManager.exe.quarantined
- File Details
- Overview
- Analysis
DeviceManager.exe.quarantined
The module DeviceManager.exe.quarantined has been detected as Ransom.Gandcrab
File Details
| MD5: |
c9d7b4f352a2362d676c850dc923f662 |
| Size: |
292 KB |
| First Published: |
2020-01-19 12:11:57 (5 years ago) |
| Latest Published: |
2021-01-13 13:58:04 (4 years ago) |
| Status: |
Ransom.Gandcrab (on last analysis) |
|
| Analysis Date: |
2021-01-13 13:58:04 (4 years ago) |
| %sysdrive%\file share |
| %sysdrive%\file share |
| %temp% |
| Windows Server 2016 |
66.7% |
|
| Windows 7 |
33.3% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00005d17 |
| Name |
Size of data |
MD5 |
| .text |
70144 |
9c4c43a32480fa3c9fb5f12e0db6babc |
| .data |
104448 |
f31429b91ddc6129871ae9671d298724 |
| .mysec |
512 |
1e9a9f424b67a8d3166bed3d745e7a48 |
| .mysec2 |
512 |
f209d1d67ac9dfd789e57a2cfed00792 |
| .rsrc |
115200 |
81fd3f7b54d1331d9f190bc3505a5b94 |
| .reloc |
7168 |
697903b60df6128aa9f2c85180df420d |
