How to remove WindowsDefender.exe

WindowsDefender.exe

The module WindowsDefender.exe has been detected as Ransom.Sabsik

WindowsDefender.exe
Remove WindowsDefender.exe

File Details

Product Name:

Microsoft Corporation
Company Name:

Microsoft® Windows® Operating System
MD5: 61626e4605a09211bfde1d960937c325
Size: 4 MB
First Published: 2022-04-13 23:31:44 (3 years ago)
Latest Published: 2022-04-19 23:34:12 (3 years ago)
Status: Ransom.Sabsik (on last analysis)
Analysis Date: 2022-04-19 23:34:12 (3 years ago)

Common Places:

%temp%
%profile%
%sysdrive%\windows.old\users\hernandez\appdata\local

Geography:

66.7%
33.3%

OS Version:

Windows 8.1 66.7%
Windows 10 33.3%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 64
Image Base:
Entry Address:

.NET Info:

MVID: 852ed7a7-51b8-41bc-a0e0-2c4d3f31a91a

PE Sections:

Name Size of data MD5
.text 4890624 882ef78f5fb36afdb465b957d050bf5b
.rsrc 258048 6043f7d9b12bd696af69f61cdc26080c

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for WindowsDefender.exe
copyright for information about WindowsDefender.exe