How to remove IR8FBaNc2.exe
- File Details
- Overview
- Analysis
IR8FBaNc2.exe
The module IR8FBaNc2.exe has been detected as Ransom.Zbot
File Details
| Product Name: |
|
| MD5: |
8ed2a9d888a12bd98fdf2ef9424f135a |
| Size: |
1 MB |
| First Published: |
2022-03-29 23:11:43 (3 years ago) |
| Latest Published: |
2022-03-30 23:24:19 (3 years ago) |
| Status: |
Ransom.Zbot (on last analysis) |
|
| Analysis Date: |
2022-03-30 23:24:19 (3 years ago) |
| %temp% |
| %localappdata%\microsoft\windows\temporary internet files\content.ie5 |
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0001879e |
| Name |
Size of data |
MD5 |
| .text |
119296 |
59f516cf6f6d7ce5b4d02409af7df484 |
| .rdata |
25600 |
8877c66df448de9eb12b5402e57cbffb |
| .data |
5120 |
375fe8e3e055a6885ce00aa22076b69a |
| .rsrc |
30208 |
faadd892de7f462ffb4282ffbf75e540 |
