How to remove maconfig.exe

maconfig.exe

The module maconfig.exe has been detected as Ransom.Wacatac

maconfig.exe
Remove maconfig.exe

File Details

Product Name:

Trellix Agent
Company Name:

Musarubra US LLC.
MD5: 8489acd446b5dd9d70d4a9df9e0822b6
Size: 346 KB
First Published: 2023-06-15 23:13:34 (2 years ago)
Latest Published: 2023-06-15 23:13:34 (2 years ago)
Status: Ransom.Wacatac (on last analysis)
Analysis Date: 2023-06-15 23:13:34 (2 years ago)

Overview

Signed By: MUSARUBRA US LLC
Status: Invalid (digital signature could be stolen or file could be patched)

Common Places:

%commonappdata%\mcafee\agent

Geography:

100.0%

OS Version:

Windows Server 2008 R2 100.0%

Analysis

Subsystem: Windows CUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00027c90

PE Sections:

Name Size of data MD5
.text 161792 6fdb6dd1e477ffec38afc72c1fb26f99
.rdata 50176 a54e21bd1d5581fbc6bf3eb4beedc322
.data 512 be9a63ba0fc995dbea68a517e02a204a
.rsrc 116224 b84ebf8d628e2fb7157a27ea7d209853
.reloc 12288 f1fbd03144ab17fc05a4dc8b68060057

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for maconfig.exe
copyright for information about maconfig.exe