How to remove ctrbldif.exe
- File Details
- Overview
- Analysis
ctrbldif.exe
The module ctrbldif.exe has been detected as Ransom.Exp
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
7f93041edda1f3fb00873c8997f113b7 |
| Size: |
1 MB |
| First Published: |
2021-01-05 10:36:41 (4 years ago) |
| Latest Published: |
2021-01-10 00:33:10 (4 years ago) |
| Status: |
Ransom.Exp (on last analysis) |
|
| Analysis Date: |
2021-01-10 00:33:10 (4 years ago) |
| %desktop%\dbfilesfromrecyc\schuyler\faircom\win32\tools\cmdline\utils |
| %sysdrive%\schuyler\faircom\win32\tools\cmdline\utils |
| %sysdrive%\schuyler\faircom\win32\tools\cmdline\utils |
| %desktop%\dbfilesfromrecyc\schuyler\faircom\win32\tools\cmdline\utils |
| %desktop%\dbfilesfromrecyc\schuyler\faircom\win32\tools\cmdline\utils |
| %sysdrive%\schuyler\faircom\win32\tools\cmdline\utils |
| Windows Server 2016 |
100.0% |
|
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000fa3d2 |
| Name |
Size of data |
MD5 |
| .text |
1476608 |
f07eb3330d0fd08bc2b2bcbef338eb38 |
| .rdata |
79360 |
7cba126e6a3a65cfeda75b0a876ed7c4 |
| .data |
115200 |
60cc6a5c7056ca06aa1de6525d96c93e |
| .idata |
4608 |
70d12c425388ba4870d565f7cf077caa |
| .rsrc |
2048 |
5c98d7f2f8adcae07faf234e3874ff29 |
| .reloc |
40448 |
5fc5fed41c4ec0078c2a5af9145cf66c |
