How to remove Remote Shutdown port.exe

Remote Shutdown port.exe

The module Remote Shutdown port.exe has been detected as Ransom.Wacatac

Remote Shutdown port.exe
Remove Remote Shutdown port

File Details

Product Name:

Remote Shutdown
Company Name:

LizardSystems
MD5: d960b2bc2175c514cd216413f0ea9832
Size: 10 MB
First Published: 2024-03-23 23:02:16 (2 years ago)
Latest Published: 2024-03-23 23:02:16 (2 years ago)
Status: Ransom.Wacatac (on last analysis)
Analysis Date: 2024-03-23 23:02:16 (2 years ago)

Common Places:

%sysdrive%\d thinkpad\d thinkpad\fars\autoplay\docs\10

Geography:

100.0%

OS Version:

Windows 10 100.0%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000ca6fc

PE Sections:

Name Size of data MD5
CODE 135168 646ca44ffed9448d0281a1539be58e0c
.text 872960 e4287967ea283bf534eb9e408baf11ec
.rdata 277504 54cfdda758faa4e402b87d6e2bbb41a9
.data 15872 afbd36542efef3fb25fed7ef9c1d88a1
DATA 5632 cf8bb73652c98268ebf8ba240133633f
BSS 2048 c99a74c555371a433d121f551d6c6398
.rsrc 612352 2e51b71dba46f65798d2a46a9fe4d521

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for Remote Shutdown port.exe
copyright for information about Remote Shutdown port.exe