How to remove Welcome.exe

Welcome.exe

The module Welcome.exe has been detected as Ransom.STOP

Welcome.exe
Remove Welcome.exe

File Details

Product Name:

Daniel Rodriguesz
Company Name:

Doofy's Projects
MD5: 7068b35227e88686bcac78bfcdeed394
Size: 10 MB
First Published: 2024-11-30 23:01:03 (a year ago)
Latest Published: 2025-06-15 23:05:36 (5 months ago)
Status: Ransom.STOP (on last analysis)
Analysis Date: 2025-06-15 23:05:36 (5 months ago)

Common Places:

%sysdrive%
%sysdrive%
%sysdrive%
%sysdrive%
%sysdrive%
%sysdrive%\instaladores

Geography:

33.3%
16.7%
16.7%
16.7%
16.7%

OS Version:

Windows 10 100.0%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00244f2b

PE Sections:

Name Size of data MD5
.text 4030976 48372a2fddf5240e0d09df123a52d31d
.rdata 874496 46a6f8ce0ef310dee3cf49451d439997
.data 148480 e57e9c9325c8bb5af6716dec814c194a
.rsrc 1454592 4e1342103effed71a06b4e78777b01a7
.enigma1 3862528 11e8a7851eb51a122dde30b0c1744327
.enigma2 290816 0784a292211346054c4724047d59bbf4

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for Welcome.exe
copyright for information about Welcome.exe