How to remove dvt-nch_activator.exe
- File Details
- Overview
- Analysis
dvt-nch_activator.exe
The module dvt-nch_activator.exe has been detected as Ransom.Wacatac
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
d2f01db513fa75ce18d15772380690de |
| Size: |
476 KB |
| First Published: |
2024-01-01 23:08:59 (a year ago) |
| Latest Published: |
2024-11-30 23:00:52 (a month ago) |
| Status: |
Ransom.Wacatac (on last analysis) |
|
| Analysis Date: |
2024-11-30 23:00:52 (a month ago) |
| %programfiles%\nch software |
| %profile%\downloads |
| %desktop%\users\dell latitude e6540 old\desktop\downloads\download manager\01- internet download manager\compressed\0\nch express zip plus 11.13 [pesktop.com] |
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00001000 |
| Name |
Size of data |
MD5 |
| .code |
14848 |
46da2c5018752470fd3127bf22d63b95 |
| .text |
55808 |
e1a026e66953c410d7f60b1f1e3c560f |
| .rdata |
13312 |
a16842a34a5da6feda9533bb3e83c3c1 |
| .data |
4608 |
7e27f975d26dc7c2c30f53b86f7ee840 |
| .rsrc |
397824 |
58d26a4986bbb798ccf6bbf7c2cdf70d |
