How to remove aLS4DFUIcEGJwylwKarP6AYz.exe

» File
File Details
Overview
Analysis

aLS4DFUIcEGJwylwKarP6AYz.exe

The module aLS4DFUIcEGJwylwKarP6AYz.exe has been detected as Ransom.STOP

aLS4DFUIcEGJwylwKarP6AYz.exe

Remove aLS4DFUIcEGJwylwKarP

File Details

Main Info:

Product Name:	Badabum
MD5:	e7a15d0fdc4c314a9c6d751c2ee40928
Size:	4 MB
First Published:	2024-04-28 23:00:42 (a year ago)
Latest Published:	2024-04-28 23:09:11 (a year ago)

Analysis:

Status:	Ransom.STOP (on last analysis)
Analysis Date:	2024-04-28 23:09:11 (a year ago)

Overview

Digital Signature

Signed By:	522a29533d3f200e2d1728300c141021081631313626321023042b113f2d26353224
Status:	Valid

Common Places:

%mydoc%

%localappdata%\microsoft\windows\inetcache\ie

%localappdata%\microsoft\windows\inetcache\ie

%localappdata%\microsoft\windows\inetcache\ie

Geography:

	75.0%
	25.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00004302

PE Sections:

Name	Size of data	MD5
.text	73216	c9cd36dd727ac10f7e8f1abb64632953
.rdata	30208	03709d8571c71237aa40724193199a89
.data	4172288	77ac3202bc003738b89d2b6fa3d04bce
.rsrc	114176	4381af381561c6b323d43c5da2d33f19
.reloc	5632	32fc43ab5f4be944a88e6157aed0d3da

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for aLS4DFUIcEGJwylwKarP6AYz.exe

copyright for information about aLS4DFUIcEGJwylwKarP6AYz.exe