How to remove KMSoffline.exe

» File
File Details
Overview
Analysis

KMSoffline.exe

The module KMSoffline.exe has been detected as Hack.AutoKMS

KMSoffline.exe

Remove KMSoffline.exe

File Details

Main Info:

Product Name:	KMSoffline
MD5:	314dc7558c2f493f568b63d33ee9080e
Size:	3 MB
First Published:	2025-12-06 23:02:07 (a week ago)
Latest Published:	2025-12-06 23:02:07 (a week ago)

Analysis:

Status:	Hack.AutoKMS (on last analysis)
Analysis Date:	2025-12-06 23:02:07 (a week ago)

Common Places:

%desktop%\ratiborus kms tools 08.03.2025\ratiborus kms tools 08.03.2025\programs

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x003af87e

.NET Info:

MVID:	4a8e74e5-d9ed-4be9-b3b5-158693afb6d4
Typelib ID:	88a20b9a-df30-459e-ab99-4d688a426cf7

PE Sections:

Name	Size of data	MD5
.text	3856896	119cd5600da10955dd659d2b9f605b69
.sdata	512	0fd1289ce8acc1f1e9a50f607d1f41a9
.rsrc	73216	2bc9e6e0fb5d1e29f4ad8fadad86460c
.reloc	512	c501c785bba5b2757f422dbeddade6e4

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for KMSoffline.exe

copyright for information about KMSoffline.exe