How to remove closedpw.exe

» File
File Details
Overview
Analysis

closedpw.exe

The module closedpw.exe has been detected as Worm.Ramnit

closedpw.exe

Remove closedpw.exe

File Details

Main Info:

MD5:	e80c3ae5cfdcd7a4de0aa9bb50a3a6d4
Size:	130 KB
First Published:	2021-01-04 20:14:29 (4 years ago)
Latest Published:	2021-01-04 20:14:29 (4 years ago)

Analysis:

Status:	Worm.Ramnit (on last analysis)
Analysis Date:	2021-01-04 20:14:29 (4 years ago)

Common Places:

%sysdrive%\$recycle.bin\s-1-5-21-95836761-3688431817-846392105-1005\$r8vd82r

Geography:

100.0%

OS Version:

Windows 7

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0000c000

PE Sections:

Name	Size of data	MD5
.text	18944	d933987accb50127511a8a31e3da1f71
.rdata	1024	2e03bdcb1748bd3080d389884fb1632b
.data	5120	bed27b6816a9866b70d2208525c882c1
.idata	1536	a9bcca6698f2d8ac6255f22d754a463e
.reloc	1536	fd8514aea13dc2f3a5b3b2e2f62fba77
.text	104448	7c1d0224747154d9615c4282c78ea541

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for closedpw.exe

copyright for information about closedpw.exe