How to remove TSRegCleaner64bit.exe
- File Details
- Overview
- Analysis
TSRegCleaner64bit.exe
The module TSRegCleaner64bit.exe has been detected as Ransom.Occamy
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
47db7b2dbbc19f7d3197828510bb5963 |
| Size: |
224 KB |
| First Published: |
2020-11-27 18:21:55 (4 years ago) |
| Latest Published: |
2022-03-03 23:21:17 (3 years ago) |
| Status: |
Ransom.Occamy (on last analysis) |
|
| Analysis Date: |
2022-03-03 23:21:17 (3 years ago) |
Overview
| Signed By: |
Gosuto |
| Status: |
Valid |
| %sysdrive% |
| %sysdrive% |
| %desktop%\corel draw 2019 (1)\corel draw 2019\ativador |
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000000400000 |
| Entry Address: |
0x00027f00 |
| Name |
Size of data |
MD5 |
| .text |
161280 |
67148b353f988201a752112cf6062f0e |
| .data |
17408 |
827d4c4a075c0722ab787d8ab5a1c3e5 |
| .bss |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| .idata |
4096 |
b348e8d075e40e1ba1ecdd168ac3c74c |
| .didata |
512 |
b2be80826bd766c2bcf80a5cd9156ee3 |
| .tls |
0 |
d41d8cd98f00b204e9800998ecf8427e |
| .rdata |
512 |
4a97a418fdd7c9c7df76f04b550ed63d |
| .pdata |
7680 |
809f038f1c9ce9d8e08a18422e40e351 |
| .rsrc |
33792 |
f75a46579141979a8ba63648361034ff |
