How to remove dbload.exe
dbload.exe
The module dbload.exe has been detected as Ransom.Exp
File Details
| Product Name: | c-treeACE Database |
| Company Name: | FairCom Corporation |
| MD5: | 28a5acddae52d21da0109847172371e0 |
| Size: | 1 MB |
| First Published: | 2021-01-05 10:39:53 (4 years ago) |
| Latest Published: | 2021-01-10 00:30:17 (4 years ago) |
| Status: | Ransom.Exp (on last analysis) | |
| Analysis Date: | 2021-01-10 00:30:17 (4 years ago) |
Common Places:
| %desktop%\dbfilesfromrecyc\schuyler\faircom\win32\tools\cmdline\admin |
| %sysdrive%\schuyler\faircom\win32\tools\cmdline\admin |
| %desktop%\dbfilesfromrecyc\schuyler\faircom\win32\tools\cmdline\admin |
| %sysdrive%\schuyler\faircom\win32\tools\cmdline\admin |
| %desktop%\dbfilesfromrecyc\schuyler\faircom\win32\tools\cmdline\admin |
| %sysdrive%\schuyler\faircom\win32\tools\cmdline\admin |
Geography:
| 100.0% |
OS Version:
| Windows Server 2016 | 100.0% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x00042fab |
PE Sections:
| Name | Size of data | MD5 |
| .text | 624640 | 5430b7280248cb3d5aef59cd2226ba57 |
| .rdata | 264192 | 6707aeae8c646c79d1eea6b7b31f8d8d |
| .data | 54784 | 4488f0f8d97607c214ebe0fbb9f2a15a |
| .idata | 5632 | 9d5e46fae26de4eb57107aec72227bd9 |
| .rsrc | 2048 | d9c0e2625d6dc37cfb992e0290de8545 |
| .reloc | 193536 | b2b466e08d980ac19e341466ed3c74fa |
More information:
Download GridinSoft
Anti-Malware - Removal tool for dbload.exe
