How to remove jWRiiSZrH7FjIn1N2cZJC64b.exe

jWRiiSZrH7FjIn1N2cZJC64b.exe

The module jWRiiSZrH7FjIn1N2cZJC64b.exe has been detected as Ransom.STOP

jWRiiSZrH7FjIn1N2cZJC64b.exe
Remove jWRiiSZrH7FjIn1N2cZJ

File Details

Product Name:

Jadezku
MD5: fb822de297dc253056e7538748d43a3a
Size: 372 KB
First Published: 2023-10-18 23:11:59 (2 years ago)
Latest Published: 2024-02-27 23:59:57 (2 years ago)
Status: Ransom.STOP (on last analysis)
Analysis Date: 2024-02-27 23:59:57 (2 years ago)

Common Places:

%localappdata%
%localappdata%
%localappdata%
%localappdata%
%localappdata%
%localappdata%
%localappdata%
%localappdata%
%localappdata%

Geography:

44.4%
44.4%
11.1%

OS Version:

Windows 10 100.0%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000056c5

PE Sections:

Name Size of data MD5
.text 342016 f90f00dfc2e70d3cb114a761f59e4e01
.data 6656 184701d798194c85098ffce88e477ffe
.duno 1024 0f343b0931126a20f133d67c2b018a3b
.vah 1536 53e979547d8c2ea86560ac45de08ae25
.rsrc 29184 0e470f1d726e6aada0a385219c45b915

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for jWRiiSZrH7FjIn1N2cZJC64b.exe
copyright for information about jWRiiSZrH7FjIn1N2cZJC64b.exe