How to remove IFCPluginWorker_Loader.exe

» File
File Details
Overview
Analysis

IFCPluginWorker_Loader.exe

The module IFCPluginWorker_Loader.exe has been detected as Worm.Ramnit

IFCPluginWorker_Loader.exe

Remove IFCPluginWorker_Load

File Details

Main Info:

Product Name:	IFCPluginWorker_Loader
Company Name:	Tekla Corporation
MD5:	c42dcd5f7456568cb67ef27ba7f567e0
Size:	98 KB
First Published:	2021-01-06 07:32:29 (4 years ago)
Latest Published:	2021-01-06 07:32:29 (4 years ago)

Analysis:

Status:	Worm.Ramnit (on last analysis)
Analysis Date:	2021-01-06 07:32:29 (4 years ago)

Common Places:

%programfiles%\sketchup\sketchup 2016

Geography:

100.0%

OS Version:

Windows 7

100.0%

Analysis

PE Info:

Subsystem:	Windows CUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00006000

PE Sections:

Name	Size of data	MD5
.text	3072	f06a4f29b87d5e9a942f79b6e815ca9e
.rdata	2048	636462c7c42684e788522d6519a6699c
.data	512	fd4514fd22489fa489055433a148e789
.rsrc	1536	b659fee125e5816158205ebd6faaa828
.reloc	1024	90ed8d7e08c7d18ab627096d9ecfa501
.text	91648	32f22bb5945fb1eef57ebfa31cec6695

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for IFCPluginWorker_Loader.exe

copyright for information about IFCPluginWorker_Loader.exe