How to remove WCr.exe
WCr.exe
The module WCr.exe has been detected as Ransom.Skeeyah
File Details
| Product Name: | WinAce Self-Extractor |
| Company Name: | e-merge GmbH |
| MD5: | 52599666126b1b4882c0a97cda5680fd |
| Size: | 1 MB |
| First Published: | 2017-10-27 00:09:29 (8 years ago) |
| Latest Published: | 2022-12-11 23:29:07 (2 years ago) |
| Status: | Ransom.Skeeyah (on last analysis) | |
| Analysis Date: | 2022-12-11 23:29:07 (2 years ago) |
Common Places:
| %sysdrive%\العاب25\المتشابه |
| %sysdrive%\العاب\top flash games\virtua fighter 2\yu-gi-oh! power of chaos common\zuma\zuma 2\اكل الزهب\memory |
| %sysdrive%\games\games\العاب مسابقات\تشابة |
Geography:
| 100.0% |
OS Version:
| Windows 7 | 50.0% | |
| Windows 10 | 50.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x0004c042 |
PE Sections:
| Name | Size of data | MD5 |
| 44032 | 5a9479687437d3fa1286cd0b7c68716f | |
| 0 | 00000000000000000000000000000000 | |
| 0 | 00000000000000000000000000000000 | |
| 0 | 00000000000000000000000000000000 | |
| 512 | 8cda0bc71746f7a2c11802ad5637a3ff | |
| 0 | 00000000000000000000000000000000 | |
| 16457 | 0966287af49e4ed7bd8e6daa98e8b78a | |
| .petite | 1536 | 9fda673ce5692a2bcf4383fa8b2c4eec |
More information:
Download GridinSoft
Anti-Malware - Removal tool for WCr.exe
