How to remove ctcmpcif.exe
- File Details
- Overview
- Analysis
ctcmpcif.exe
The module ctcmpcif.exe has been detected as Ransom.Exp
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
0e0490a7b76948efa933dc3323a594bd |
| Size: |
1 MB |
| First Published: |
2021-01-05 10:36:36 (4 years ago) |
| Latest Published: |
2021-01-10 00:33:18 (4 years ago) |
| Status: |
Ransom.Exp (on last analysis) |
|
| Analysis Date: |
2021-01-10 00:33:18 (4 years ago) |
| %sysdrive%\schuyler\faircom\win32\tools\cmdline\utils |
| %desktop%\dbfilesfromrecyc\schuyler\faircom\win32\tools\cmdline\utils |
| %desktop%\dbfilesfromrecyc\schuyler\faircom\win32\tools\cmdline\utils |
| %sysdrive%\schuyler\faircom\win32\tools\cmdline\utils |
| %desktop%\dbfilesfromrecyc\schuyler\faircom\win32\tools\cmdline\utils |
| %sysdrive%\schuyler\faircom\win32\tools\cmdline\utils |
| Windows Server 2016 |
100.0% |
|
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000fa4b2 |
| Name |
Size of data |
MD5 |
| .text |
1477120 |
8d85afdeda94116d84d9c83be174d471 |
| .rdata |
79360 |
9f88e30c8436f559dcd34f0ff2a77792 |
| .data |
115712 |
a95b3418e299f62dc7c1dab3080a9e73 |
| .idata |
4608 |
70d12c425388ba4870d565f7cf077caa |
| .rsrc |
2048 |
6dc529dcb952d10a023a192cd52a0a12 |
| .reloc |
40448 |
94b9f0901e2c8d19b46e18f7993480a9 |
