How to remove RtlCPAPI.dll

» File
File Details
Overview
Analysis

RtlCPAPI.dll

The module RtlCPAPI.dll has been detected as Worm.Ramnit

RtlCPAPI.dll

Remove RtlCPAPI.dll

File Details

Main Info:

Product Name:	RtlCPAPI Module
MD5:	59296086512598a1e46917e3d2df3ec8
Size:	236 KB
First Published:	2021-01-09 11:54:20 (4 years ago)
Latest Published:	2021-01-09 11:54:20 (4 years ago)

Analysis:

Status:	Worm.Ramnit (on last analysis)
Analysis Date:	2021-01-09 11:54:20 (4 years ago)

Common Places:

%sysdrive%\new folder (4)\new folder\data backup\double driver backup\mura-c8552657ec 2-18-2012 7-05-10 pm\media

Geography:

100.0%

OS Version:

Windows 7

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x10000000
Entry Address:	0x00024000

PE Sections:

Name	Size of data	MD5
.text	77824	a0f803e612a1986453f10c97db84121c
.rdata	20480	2f24094a8a5c3d7ffdc71a2cf1fda862
.data	8192	725d61b17886319fb5e638bcf5a84c4e
.rsrc	8192	dc90d57ee0ecb2886c5938e8a04e045f
.reloc	12288	d06367de6230dda62b7fba596dba880a
.text	110592	e05206419b983e8145e2218e6840d652

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for RtlCPAPI.dll

copyright for information about RtlCPAPI.dll