How to remove ExtreamFanV5.exe
- File Details
- Overview
- Analysis
ExtreamFanV5.exe
The module ExtreamFanV5.exe has been detected as Ransom.Sabsik
File Details
Product Name: |
|
Company Name: |
|
MD5: |
a102cea468c6316f61d17d489d8c3a81 |
Size: |
1 MB |
First Published: |
2023-10-12 23:05:22 (2 years ago) |
Latest Published: |
2023-10-20 23:28:51 (2 years ago) |
Status: |
Ransom.Sabsik (on last analysis) |
|
Analysis Date: |
2023-10-20 23:28:51 (2 years ago) |
%localappdata% |
%commonappdata% |
%commonappdata% |
%temp% |
%commonappdata% |
%temp% |
%localappdata% |
%commonappdata% |
%commonappdata% |
%temp% |
Turkey |
26.6% |
|
Mexico |
12.5% |
|
Brazil |
12.5% |
|
Colombia |
12.5% |
|
Peru |
10.9% |
|
Algeria |
10.9% |
|
Tunisia |
6.3% |
|
Iraq |
6.3% |
|
Ecuador |
1.6% |
|
Windows 10 |
85.9% |
|
Windows 7 |
14.1% |
|
Analysis
Subsystem: |
Windows GUI |
PE Type: |
pe |
OS Bitness: |
32 |
Image Base: |
0x00400000 |
Entry Address: |
0x003ceaf8 |
Name |
Size of data |
MD5 |
|
172032 |
d9a162c9d6f43798493a9056b61e00c4 |
|
40960 |
2d8172c6210ba0bd8cf263e8286935d7 |
|
1536 |
65647c0b3da1e7cdc47be767764db506 |
|
96256 |
ab4643b06e2fd8cfe13242a9065d3cf4 |
|
10240 |
30fe49fe17d6fbd5b89ea573a3533406 |
.idata |
512 |
5f31c5cd959beeaad1f9ef43e31ee63f |
.tls |
512 |
f926162dbf9669aca4c8dcf9b6483435 |
.rsrc |
103936 |
808febc40ecc1eb2309f1f704eb531ab |
.themida |
0 |
d41d8cd98f00b204e9800998ecf8427e |
.boot |
1389056 |
da7037f280d12d6e36186ce9a0fb7449 |
.reloc |
16 |
46069951207b147b7ddbdbd6f0c02ddb |