How to remove Windows Host.exe
- File Details
- Overview
- Analysis
Windows Host.exe
The module Windows Host.exe has been detected as Ransom.Wacatac
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
b76457dcba6349b27c2d373736f9d292 |
| Size: |
109 KB |
| First Published: |
2020-11-17 11:09:54 (4 years ago) |
| Latest Published: |
2021-01-06 20:19:35 (4 years ago) |
| Status: |
Ransom.Wacatac (on last analysis) |
|
| Analysis Date: |
2021-01-06 20:19:35 (4 years ago) |
| %commonappdata% |
| %commonappdata% |
| %commonappdata% |
| %commonappdata% |
| %commonappdata% |
| %commonappdata% |
| %commonappdata% |
| %commonappdata% |
| %commonappdata% |
| %commonappdata% |
|
31.8% |
|
|
6.2% |
|
|
6.2% |
|
|
4.7% |
|
|
3.9% |
|
|
3.9% |
|
|
3.1% |
|
|
2.3% |
|
|
2.3% |
|
|
2.3% |
|
|
2.3% |
|
|
2.3% |
|
|
2.3% |
|
|
2.3% |
|
|
2.3% |
|
|
2.3% |
|
|
1.6% |
|
|
1.6% |
|
|
1.6% |
|
|
1.6% |
|
|
1.6% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
|
0.8% |
|
| Windows 10 |
47.4% |
|
| Windows 7 |
43.7% |
|
| Windows 8.1 |
6.7% |
|
| Windows 8 |
1.5% |
|
| Windows Server 2012 |
0.7% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0002200a |
| Name |
Size of data |
MD5 |
| VZ$kK |
69120 |
ad2b065890abf929006539da76563da1 |
| .text |
39424 |
9b4e67eb96abba46b8a0887133258222 |
| .rsrc |
1536 |
f8c153ee2245eb0437d3963de8109f11 |
| .reloc |
512 |
9d3b690dc41e7ea9367ffe9b9f5920b7 |
|
512 |
ba66f0e8caebca3251eb9e3b42e6840a |
