How to remove bootImgCVT.dll

» File
File Details
Overview
Analysis

bootImgCVT.dll

The module bootImgCVT.dll has been detected as Worm.Ramnit

bootImgCVT.dll

Remove bootImgCVT.dll

File Details

Main Info:

MD5:	cc6be80d560cc302f3ca60340650ef1f
Size:	1 MB
First Published:	2017-05-24 14:04:10 (7 years ago)
Latest Published:	2017-05-24 15:05:40 (7 years ago)

Analysis:

Status:	Worm.Ramnit (on last analysis)
Analysis Date:	2017-05-24 15:05:40 (7 years ago)

Common Places:

%desktop%\spd_vol\spd_vol_ext

Geography:

100.0%

OS Version:

Windows 7

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00143000

PE Sections:

Name	Size of data	MD5
.text	764416	c12bdd7925a358dd22c87521136ecf26
.data	62464	accd1ba62f77a3b70995f5b1e91a7972
.tls	512	bf619eac0cdf3f68d496ea9344137e8b
.idata	10752	e8812a2dbee53216cdcbd8ba96bd7605
.edata	512	bcd987bec96cb0e5b543f6fce697b83c
.rsrc	390656	f32a8ec510471888140fc9f38502462e
.reloc	45568	f25229af6eeb88b32b0881f51c0cb081
.text	139264	252934cc021ca7ae4c04c4d571a1eac1

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for bootImgCVT.dll

copyright for information about bootImgCVT.dll