How to remove Welcome.exe

» File
File Details
Overview
Analysis

Welcome.exe

The module Welcome.exe has been detected as Ransom.STOP

Welcome.exe

Remove Welcome.exe

File Details

Main Info:

Product Name:	Daniel Rodriguesz
Company Name:	Doofy's Projects
MD5:	ebe90595a3d101aaa0755fcdeabe66f8
Size:	10 MB
First Published:	2024-05-23 23:02:43 (a year ago)
Latest Published:	2025-05-27 23:01:20 (2 weeks ago)

Analysis:

Status:	Ransom.STOP (on last analysis)
Analysis Date:	2025-05-27 23:01:20 (2 weeks ago)

Common Places:

%sysdrive%

%sysdrive%

%sysdrive%

%sysdrive%

%sysdrive%

Geography:

	80.0%
	20.0%

OS Version:

Windows 10	60.0%
Windows 7	40.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00244f2b

PE Sections:

Name	Size of data	MD5
.text	4030976	48372a2fddf5240e0d09df123a52d31d
.rdata	874496	cdb203367a51f10bed26a7f6329f4956
.data	148480	e57e9c9325c8bb5af6716dec814c194a
.rsrc	1454592	38e119d24786d67cd2ba9b554c9be2e1
.enigma1	4255744	a92969d2f56ef60e0daedd3b91b8ae9f
.enigma2	290816	f9555e1fdb63e77cdb964f476cb9524f

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for Welcome.exe

copyright for information about Welcome.exe