How to remove iz_lI0yP1R8g1chxrITGXWpm.exe

iz_lI0yP1R8g1chxrITGXWpm.exe

The module iz_lI0yP1R8g1chxrITGXWpm.exe has been detected as Ransom.Sabsik

iz_lI0yP1R8g1chxrITGXWpm.exe
Remove iz_lI0yP1R8g1chxrITG

File Details

Product Name:

PDFsharp (Debug Build)
Company Name:

empira Software GmbH, Cologne (Germany)
MD5: ff794b8c0873acb0a4e362e6b1902d47
Size: 2 MB
First Published: 2024-01-05 23:45:44 (2 years ago)
Latest Published: 2024-01-05 23:45:44 (2 years ago)
Status: Ransom.Sabsik (on last analysis)
Analysis Date: 2024-01-05 23:45:44 (2 years ago)

Overview

Signed By: AVG Technologies USA, LLC
Status: Invalid (digital signature could be stolen or file could be patched)

Common Places:

%mydoc%

Geography:

100.0%

OS Version:

Windows 10 100.0%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x004e00b0

PE Sections:

Name Size of data MD5
83968 5cd9c4e7d199109b86f07064e441c0a4
198144 465aed1898de4bbb29595cb70141acc2
512 1b4480c2ac0c5a6c14a3a18e83b5fd7c
.idata 512 80faaf9c270698494db04791f894dcdd
.rsrc 197120 93c37df169e766abb12c7e68bd0989f1
.themida 0 d41d8cd98f00b204e9800998ecf8427e
.boot 2284544 8c0beba76dada100c265dbed0a53a171

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for iz_lI0yP1R8g1chxrITGXWpm.exe
copyright for information about iz_lI0yP1R8g1chxrITGXWpm.exe