How to remove PDF2Image.exe

» File
File Details
Overview
Analysis

PDF2Image.exe

The module PDF2Image.exe has been detected as Ransom.Wacatac

PDF2Image.exe

Remove PDF2Image.exe

File Details

Main Info:

Product Name:	PDF2Image
MD5:	608139895713ff690b90d363cd8d7724
Size:	2 MB
First Published:	2023-06-04 23:38:57 (2 years ago)
Latest Published:	2023-09-25 23:27:49 (2 years ago)

Analysis:

Status:	Ransom.Wacatac (on last analysis)
Analysis Date:	2023-09-25 23:27:49 (2 years ago)

Overview

Digital Signature

Signed By:	Guang Dong Ji Tong Zhi Neng Ke Ji You Xian Gong Si
Status:	Valid

Common Places:

%profile%\downloads\gilisoft.video.editor.16.0.portable\app

%programfiles%\gilisoft

%programfiles%\gilisoft

%programfiles%\gilisoft

%desktop%\gilisoft video editor pro 17.0 (x64)\app

Geography:

	40.0%
	20.0%
	20.0%
	20.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x002496a0

PE Sections:

Name	Size of data	MD5
.text	2385920	fc294aebdb7d5a9283af39f14f8e0189
.itext	6144	3b616ccb33a41b253d3a48b347c790ad
.data	21504	feb069748038c31dbd79be9cbd5262ae
.bss	0	d41d8cd98f00b204e9800998ecf8427e
.idata	12800	7cbf7dd075c9d7bb53c427ea89fde929
.didata	24576	0c85fe02722a9266c892ca31e1c34c9e
.edata	512	0c3c8aaef65a3fa9a0266ca7737ab988
.tls	0	d41d8cd98f00b204e9800998ecf8427e
.rdata	512	5b894d3fb4361ae927eefa59b12ba030
.reloc	232960	5bc5b7f4479829bea4c2befe86b40dff
.rsrc	361472	3fa33833b3b2cf719dbce9e57851e7b5

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for PDF2Image.exe

copyright for information about PDF2Image.exe