How to remove conhost.exe

» File
File Details
Overview
Analysis

conhost.exe

The module conhost.exe has been detected as Ransom.Wacatac

conhost.exe

Remove conhost.exe

File Details

Main Info:

Product Name:	WinRAR
Company Name:	Alexander Roshalov
MD5:	5ecfc245636e3740f27ae5fe6a964bc3
Size:	2 MB
First Published:	2024-02-08 23:41:39 (2 years ago)
Latest Published:	2024-02-08 23:41:39 (2 years ago)

Analysis:

Status:	Ransom.Wacatac (on last analysis)
Analysis Date:	2024-02-08 23:41:39 (2 years ago)

Overview

Digital Signature

Signed By:	ESET NOD32
Status:	Valid

Common Places:

%temp%

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0001945f

PE Sections:

Name	Size of data	MD5
.text	102400	77214463bf2ce5885b340e1238bdb913
.rdata	15360	d084871adc0cd9263e4a1811b8fc40fa
.data	2560	8c42b68006a121b1b9ebd199e2e59ca5
.rsrc	20992	6d09fc17a82fa51d1afe7ba51ea69b11

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for conhost.exe

copyright for information about conhost.exe