How to remove Notepad.exe
- File Details
- Overview
- Analysis
Notepad.exe
The module Notepad.exe has been detected as Ransom.Wacatac
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
cac0cbb760300abde9900b0d4b0e6bcc |
| Size: |
201 KB |
| First Published: |
2024-05-29 23:06:19 (a year ago) |
| Latest Published: |
2024-05-29 23:17:25 (a year ago) |
| Status: |
Ransom.Wacatac (on last analysis) |
|
| Analysis Date: |
2024-05-29 23:17:25 (a year ago) |
| %temp%\rar$exa15940.29938 |
| %temp%\rar$exa15940.29938 |
| %desktop%\notepad_5.1.2600 |
| %temp%\rar$exa12600.28821 |
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x01000000 |
| Entry Address: |
0x0000739d |
| Name |
Size of data |
MD5 |
| .text |
30720 |
deef9a8d3bc59690447f878a93838fd5 |
| .data |
2048 |
3fd82fcc3cf0c0692e0e466248ee3fbf |
| .rsrc |
172032 |
213e2d92c10ada73237a95847061c01a |
