How to remove Retailer[1].exe

» File
File Details
Overview
Analysis

Retailer[1].exe

The module Retailer[1].exe has been detected as Ransom.Sabsik

Retailer[1].exe

Remove Retailer[1].exe

File Details

Main Info:

Product Name:	GrapeCity.Documents
Company Name:	GrapeCity, Inc.
MD5:	42ff760b35371c012856353e86e60cad
Size:	5 MB
First Published:	2024-03-26 23:06:58 (a year ago)
Latest Published:	2024-03-26 23:06:58 (a year ago)

Analysis:

Status:	Ransom.Sabsik (on last analysis)
Analysis Date:	2024-03-26 23:06:58 (a year ago)

Common Places:

%sysdrive%\windows.old\users\lenovo\appdata\local\microsoft\windows\inetcache\ie

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0054e689

PE Sections:

Name	Size of data	MD5
.text	0	d41d8cd98f00b204e9800998ecf8427e
.rdata	0	d41d8cd98f00b204e9800998ecf8427e
.data	0	d41d8cd98f00b204e9800998ecf8427e
.vmpÂ¤Â»	0	d41d8cd98f00b204e9800998ecf8427e
.vmpÂ¤Â»	2048	03b157c939e8ee9a32775975a69673e4
.vmpÂ¤Â»	5421568	670174d07bfb26e343049a8e6ae49818
.reloc	7168	9d090961769e87f5e0a977ec598c21e9
.rsrc	8704	cd681c18b3bd1d4a228a90496ec2fd1c

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for Retailer[1].exe

copyright for information about Retailer[1].exe