How to remove MSI.exe
MSI.exe
The module MSI.exe has been detected as Ransom.Wacatac
File Details
| Product Name: | Notepad++ |
| Company Name: | Don HO don.h@free.fr |
| MD5: | 98e575a9da71488a864618bdca5bc786 |
| Size: | 2 MB |
| First Published: | 2024-12-10 23:01:54 (a year ago) |
| Latest Published: | 2024-12-10 23:01:54 (a year ago) |
| Status: | Ransom.Wacatac (on last analysis) | |
| Analysis Date: | 2024-12-10 23:01:54 (a year ago) |
Overview
| Signed By: | Notepad++ |
| Status: | Invalid (digital signature could be stolen or file could be patched) |
Common Places:
| %appdata% |
Geography:
| 100.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x0020281a |
.NET Info:
| MVID: | 5a189569-6a9d-47fc-b518-5e7d2f98df6a |
| Typelib ID: | 8c6a8281-95cc-4e19-a62b-d3b8c5c4c8bf |
PE Sections:
| Name | Size of data | MD5 |
| .text | 2099712 | 653b197775f4f4adf7473132b0cca4da |
| .rsrc | 19456 | b35e3ca30168724ec49fe46bb23124dc |
| .reloc | 512 | 18fe16642e140e7d65226c337408764a |
More information:
Download GridinSoft
Anti-Malware - Removal tool for MSI.exe
