How to remove KMSAuto-Net-Portable_1em5GclE.exe

KMSAuto-Net-Portable_1em5GclE.exe

The module KMSAuto-Net-Portable_1em5GclE.exe has been detected as Ransom.Sabsik

KMSAuto-Net-Portable_1em5GclE.exe
Remove KMSAuto-Net-Portable

File Details

Product Name:

Reg Organizer

Company Name:

MD5: f6d353764b3d71838a57c7f6c466902a
Size: 5 MB
First Published: 2023-01-26 23:44:51 (2 years ago)
Latest Published: 2023-01-26 23:46:55 (2 years ago)
Status: Ransom.Sabsik (on last analysis)
Analysis Date: 2023-01-26 23:46:55 (2 years ago)

Common Places:

%temp%
%profile%\downloads

Geography:

100.0%

OS Version:

Windows 10 100.0%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00009b24

PE Sections:

Name Size of data MD5
CODE 37888 00d95da090f9b045cc52199c7b36d118
DATA 1024 39d5f89b5ecafeb0fe902996045df0e7
BSS 0 d41d8cd98f00b204e9800998ecf8427e
.idata 2560 bb5485bf968b970e5ea81292af2acdba
.tls 0 d41d8cd98f00b204e9800998ecf8427e
.rdata 512 9ba824905bf9c7922b6fc87a38b74366
.reloc 0 d41d8cd98f00b204e9800998ecf8427e
.rsrc 168448 63a6ee8ef3ce5082a66b8f380b914819

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for KMSAuto-Net-Portable_1em5GclE.exe
copyright for information about KMSAuto-Net-Portable_1em5GclE.exe