How to remove fodhelper.exe

» File
File Details
Overview
Analysis

fodhelper.exe

The module fodhelper.exe has been detected as Ransom.Sabsik

fodhelper.exe

Remove fodhelper.exe

File Details

Main Info:

Product Name:	إدارة صوت Realtek HD
Company Name:	Realtek Semiconductor
MD5:	ad26711f1f01bda91cb795c20677717b
Size:	1 MB
First Published:	2021-12-18 21:12:24 (3 years ago)
Latest Published:	2022-02-22 23:40:50 (3 years ago)

Analysis:

Status:	Ransom.Sabsik (on last analysis)
Analysis Date:	2022-02-22 23:40:50 (3 years ago)

Overview

Digital Signature

Signed By:	Logitech ZC-9016 USA State of Washington
Status:	Valid

Common Places:

%appdata%\microsoft

%temp%

%appdata%\microsoft

%appdata%\microsoft

%temp%

%appdata%\microsoft

%appdata%\microsoft

Geography:

	42.9%
	28.6%
	28.6%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0035d000

PE Sections:

Name	Size of data	MD5
.bss	0	d41d8cd98f00b204e9800998ecf8427e
.data	512	bf16c8810d4011186009a4eaafdad9e1
.rsrc	397960	ee52c1a8faa7db75d9cbfc6eb9658475
.edata	97640	1aeca1e18ead80490d4a92bb8277b4d4

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for fodhelper.exe

copyright for information about fodhelper.exe