How to remove Tue1272e6def79.exe

» File
File Details
Overview
Analysis

Tue1272e6def79.exe

The module Tue1272e6def79.exe has been detected as Ransom.Sabsik

Tue1272e6def79.exe

Remove Tue1272e6def79.exe

File Details

Main Info:

MD5:	940c253a4d67e06dde48b90ddb6d3aa9
Size:	4 MB
First Published:	2021-11-16 21:32:56 (2 years ago)
Latest Published:	2021-11-16 21:32:56 (2 years ago)

Analysis:

Status:	Ransom.Sabsik (on last analysis)
Analysis Date:	2021-11-16 21:32:56 (2 years ago)

Overview

Digital Signature

Signed By:	10306
Status:	Valid

Common Places:

%temp%

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0041a330

PE Sections:

Name	Size of data	MD5
.text	4421120	aab4a52f854e343259596db540ed5045
.data	6656	ea31cb8b88646b85fa91dac1c4accea7
.rsrc	24064	b32d9f5acec26643a79607b9e3685fec
.reloc	75264	24f6a7473062875b8e4dcf512e5b6db5

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for Tue1272e6def79.exe

copyright for information about Tue1272e6def79.exe