How to remove Ushellg.exe

Ushellg.exe

The module Ushellg.exe has been detected as Ransom.Banker

Ushellg.exe
Remove Ushellg.exe

File Details

Product Name:

Copyright Microsoft Corporation
Company Name:

Microsoft Edge Update
MD5: 4552565b5fb6be19a661d057ffaac735
Size: 218 KB
First Published: 2021-11-28 21:24:35 (3 years ago)
Latest Published: 2021-11-28 21:26:44 (3 years ago)
Status: Ransom.Banker (on last analysis)
Analysis Date: 2021-11-28 21:26:44 (3 years ago)

Common Places:

%appdata%\microsoft
%commonappdata%
%appdata%\microsoft

Geography:

100.0%

OS Version:

Windows 7 100.0%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x0003797a

.NET Info:

MVID: 0a04d8f7-8e66-4538-bcb1-cc22657bacad
Typelib ID: a4d15a8b-5fbb-4d9e-889c-4128c127176d

PE Sections:

Name Size of data MD5
.text 220160 00090d73c6f93274961848cf67ad0c88
.rsrc 2048 4e1f00c8e527389b24d220f77f4d76c8
.reloc 512 a8a8ee869da45c361be86a9c3812c0a2

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for Ushellg.exe
copyright for information about Ushellg.exe