How to remove ZtOfjoDoGWreahyIIfInKTNR.exe

» File
File Details
Overview
Analysis

ZtOfjoDoGWreahyIIfInKTNR.exe

The module ZtOfjoDoGWreahyIIfInKTNR.exe has been detected as Ransom.STOP

ZtOfjoDoGWreahyIIfInKTNR.exe

Remove ZtOfjoDoGWreahyIIfIn

File Details

Main Info:

Product Name:	Jadezky
MD5:	f71cca8206e173f86a3c3fd1891ac4db
Size:	4 MB
First Published:	2023-11-09 23:02:00 (2 years ago)
Latest Published:	2024-02-28 00:00:24 (a year ago)

Analysis:

Status:	Ransom.STOP (on last analysis)
Analysis Date:	2024-02-28 00:00:24 (a year ago)

Overview

Digital Signature

Signed By:	525c3d3f1b06302b310410391d3f23471542520105293b2253150610173842041410
Status:	Valid

Common Places:

%localappdata%

%localappdata%

%localappdata%

%localappdata%

%localappdata%

%localappdata%

%localappdata%

%localappdata%

%localappdata%

%localappdata%

Geography:

	95.2%
	4.8%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00005675

PE Sections:

Name	Size of data	MD5
.text	4315648	494b984734817adbea6c2761bc105f16
.data	6656	0faae4b2fa1210ade9086df28bbfecb9
.rsrc	29184	03e3a5152fecd43e0a91e3e35bda8f52

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for ZtOfjoDoGWreahyIIfInKTNR.exe

copyright for information about ZtOfjoDoGWreahyIIfInKTNR.exe