How to remove VIIPlusLoader.exe

» File
File Details
Overview
Analysis

VIIPlusLoader.exe

The module VIIPlusLoader.exe has been detected as Ransom.Wacatac

VIIPlusLoader.exe

Remove VIIPlusLoader.exe

File Details

Main Info:

Product Name:	VII Plus Loader
Company Name:	FLY
MD5:	e897a0b47125a1f91ac0d7b69fe449db
Size:	10 MB
First Published:	2024-07-09 23:05:58 (a year ago)
Latest Published:	2024-07-09 23:05:58 (a year ago)

Analysis:

Status:	Ransom.Wacatac (on last analysis)
Analysis Date:	2024-07-09 23:05:58 (a year ago)

Common Places:

%programfiles%

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00d27d7d

PE Sections:

Name	Size of data	MD5
.text	0	d41d8cd98f00b204e9800998ecf8427e
.rdata	0	d41d8cd98f00b204e9800998ecf8427e
.data	0	d41d8cd98f00b204e9800998ecf8427e
.vmp0	0	d41d8cd98f00b204e9800998ecf8427e
.vmp1	10519040	e563917d305c05298725ae842b6d1d14
.reloc	1536	d4d83d92d181da6fe7887f0d579a19f5
.rsrc	140800	0d1f78b4751eb4c7bb9171895f7fdb82

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for VIIPlusLoader.exe

copyright for information about VIIPlusLoader.exe