How to remove efsddf.exe

» File
File Details
Overview
Analysis

efsddf.exe

The module efsddf.exe has been detected as Ransom.Banker

efsddf.exe

Remove efsddf.exe

File Details

Main Info:

Product Name:	MicrosoftВ® WindowsВ® Operating System
Company Name:	Microsoft
MD5:	c86235ec2e69ecdcd4a738b6903981a0
Size:	293 KB
First Published:	2021-12-13 21:09:21 (4 years ago)
Latest Published:	2022-01-15 21:54:53 (4 years ago)

Analysis:

Status:	Ransom.Banker (on last analysis)
Analysis Date:	2022-01-15 21:54:53 (4 years ago)

Common Places:

%appdata%

%appdata%

%appdata%

%appdata%

Geography:

	50.0%
	25.0%
	25.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000140000000
Entry Address:	0x0003a1f0

PE Sections:

Name	Size of data	MD5
.text	242688	6de5185fdf6278c85e8160f62fcf308e
.rdata	45568	0597c7f4e9e4306c05727cf818ba2dab
.data	512	c90c48dedc51295a7763b1dd3eaf990d
.pdata	7680	d28b59f3ea904a4ecd236bb8c631b957
.rsrc	1024	96a00808d4f71a9307d4638815b04d7e
.reloc	2048	6b73068042f947ce10955f8a97c59ee8

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for efsddf.exe

copyright for information about efsddf.exe