How to remove Gpxju56a.exe

» File
File Details
Overview
Analysis

Gpxju56a.exe

The module Gpxju56a.exe has been detected as Ransom.Wacatac

Gpxju56a.exe

Remove Gpxju56a.exe

File Details

Main Info:

Product Name:	Web Companion Installer
Company Name:	Lavasoft
MD5:	ced211f68222c41b9b75bb6685df1b1b
Size:	1 MB
First Published:	2022-09-25 23:08:28 (2 years ago)
Latest Published:	2022-09-25 23:08:28 (2 years ago)

Analysis:

Status:	Ransom.Wacatac (on last analysis)
Analysis Date:	2022-09-25 23:08:28 (2 years ago)

Common Places:

%appdata%

Geography:

100.0%

OS Version:

Windows 7

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000140000000
Entry Address:	0x00001150

PE Sections:

Name	Size of data	MD5
.text	32768	c3464cd34f36237b7cc1d2ba2ef9e935
.rdata	12288	775f95f06e6b1440a441f1edf9e7d392
.data	4096	f198899505f620007167379f74f8141c
.pdata	4096	1000bdae687dd7da87dd623ac640f297
.rsrc	1343488	1655952cd5da26f7ab3e9c25b6297da5
.reloc	4096	cf22972a59e8c2a2ad0453d649f2025d

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for Gpxju56a.exe

copyright for information about Gpxju56a.exe