How to remove MBR Regenerator v4.5.exe
- File Details
- Overview
- Analysis
MBR Regenerator v4.5.exe
The module MBR Regenerator v4.5.exe has been detected as Ransom.Zbot
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
fca2aa6d8039dd107aff1a3cfbe97f7b |
| Size: |
1 MB |
| First Published: |
2020-12-31 15:34:41 (4 years ago) |
| Latest Published: |
2025-08-06 23:01:25 (3 weeks ago) |
| Status: |
Ransom.Zbot (on last analysis) |
|
| Analysis Date: |
2025-08-06 23:01:25 (3 weeks ago) |
| %sysdrive%\tudo\ativadores win office |
| %sysdrive%\2017 backup geral\arquivos gabriel\atvdr w7 by ph downs |
| %profile%\random\varios 2021 |
| %mydoc%\megasync downloads\mbr regenerator |
| %profile%\onedrive\área de trabalho\pendrive vermelho\programas instalar\ativador windows 7 todas as versões[byte informatica]\ativador windows 7 todas as versões[byte informatica] |
| %sysdrive%\win_7 |
| %sysdrive% |
| %sysdrive%\win_7 |
| %desktop%\2021\escritorio\instalar\2. activacion de win7\activar windows 7 (despues de dias) |
| %desktop%\tudo\busi arquivos\ativar windows\ativar windows |
|
25.0% |
|
|
25.0% |
|
|
12.5% |
|
|
9.4% |
|
|
9.4% |
|
|
6.3% |
|
|
3.1% |
|
|
3.1% |
|
|
3.1% |
|
|
3.1% |
|
| Windows 10 |
87.9% |
|
| Windows 7 |
12.1% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0002cb1c |
| MVID: |
921d8329-cef7-48ec-8aab-31dabf344dde |
| Typelib ID: |
dda2d156-3869-4443-830d-32e7aa28d5f6 |
| Name |
Size of data |
MD5 |
| .rsrc |
139264 |
75758a406027d0bc2d9b56506a9aed67 |
| .text |
1049088 |
6af4bc744930859567f1e426140a19d0 |
| .reloc |
512 |
6106b8187f08ac152f08b86a11b03763 |
