How to remove OfficeTrackerNMP131.exe

» File
File Details
Overview
Analysis

OfficeTrackerNMP131.exe

The module OfficeTrackerNMP131.exe has been detected as Ransom.Wacatac

OfficeTrackerNMP131.exe

Remove OfficeTrackerNMP131.

File Details

Main Info:

Product Name:	AutoIt v3 Script (Beta)
Company Name:	AutoIt Team
MD5:	848164d084384c49937f99d5b894253e
Size:	924 KB
First Published:	2023-12-15 00:00:05 (5 months ago)
Latest Published:	2024-03-05 23:16:54 (2 months ago)

Analysis:

Status:	Ransom.Wacatac (on last analysis)
Analysis Date:	2024-03-05 23:16:54 (2 months ago)

Overview

Digital Signature

Signed By:	AutoIt Consulting Ltd
Status:	Valid

Common Places:

%commonappdata%

%localappdata%

%localappdata%

%localappdata%

Geography:

	25.0%
	25.0%
	25.0%
	25.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x000208c7

PE Sections:

Name	Size of data	MD5
.text	635904	c978d70e28dccae2b8fc4ec27708abff
.rdata	195584	16a0b1c6aac8690d1b7fcef2f4da83d8
.data	18432	7bb679833526d9da3837d90553695888
.rsrc	55296	40a5b47c65185b3674c967512831cfba
.reloc	30720	9b2d7f17f7a84ab920a4e1e09405b536

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for OfficeTrackerNMP131.exe

copyright for information about OfficeTrackerNMP131.exe