How to remove WinHoster.exe
- File Details
- Overview
- Analysis
WinHoster.exe
The module WinHoster.exe has been detected as Ransom.Sabsik
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
3a6a0c884f89d7f8f05f8d0a6aa1c635 |
| Size: |
66 KB |
| First Published: |
2021-11-05 21:16:28 (3 years ago) |
| Latest Published: |
2021-11-17 21:56:59 (3 years ago) |
| Status: |
Ransom.Sabsik (on last analysis) |
|
| Analysis Date: |
2021-11-17 21:56:59 (3 years ago) |
| %localappdata% |
| %appdata% |
| %appdata% |
| %localappdata% |
| %localappdata% |
| %appdata% |
| %localappdata% |
| %localappdata% |
| %localappdata% |
| %localappdata% |
|
30.8% |
|
|
15.4% |
|
|
7.7% |
|
|
7.7% |
|
|
7.7% |
|
|
7.7% |
|
|
7.7% |
|
|
7.7% |
|
|
7.7% |
|
| Windows 10 |
92.3% |
|
| Windows 7 |
7.7% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0001800a |
| Name |
Size of data |
MD5 |
| JS>a9 |
22528 |
956111ff99091036da0b0dfe207e531f |
| .text |
41984 |
afa6e3e52c9777878ad3a8dd82170445 |
| .rsrc |
1536 |
04fad8b099f3da2697d56e05a4b773f0 |
| .reloc |
512 |
dae28bfd61433c92b984508af324ec42 |
|
512 |
cd1e316db503f037d3bf772d6d74a2f4 |
