How to remove NOTEPAD.EXE

NOTEPAD.EXE

The module NOTEPAD.EXE has been detected as Ransom.Wacatac

NOTEPAD.EXE
Remove NOTEPAD.EXE

File Details

Product Name:

Microsoft(R) Windows(R) Operating System
Company Name:

Microsoft Corporation
MD5: a2c51d0397ee0bcb765800c16b4af9b6
Size: 55 KB
First Published: 2023-05-05 23:18:45 (2 years ago)
Latest Published: 2023-05-05 23:18:45 (2 years ago)
Status: Ransom.Wacatac (on last analysis)
Analysis Date: 2023-05-05 23:18:45 (2 years ago)

Common Places:

%profile%\downloads\[nextorrent.pw] windows password recovery tool\usb\sources\boot.wim\windows

Geography:

100.0%

OS Version:

Windows 7 100.0%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x01000000
Entry Address: 0x0000739d

PE Sections:

Name Size of data MD5
.text 30720 697dee54d20c01361c22bfce696408ac
.data 2048 3fd82fcc3cf0c0692e0e466248ee3fbf
.rsrc 22528 5cf161a19255592516b7d0f1c6ca9ed3

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for NOTEPAD.EXE
copyright for information about NOTEPAD.EXE