How to remove magicballs.exe

» File
File Details
Overview
Analysis

magicballs.exe

The module magicballs.exe has been detected as Ransom.Blocker

magicballs.exe

Remove magicballs.exe

File Details

Main Info:

Product Name:	FlashJester Jugglor Engine
Company Name:	3rd Eye Solutions
MD5:	3e75aa97dbb14f39eec918a62f83a365
Size:	421 KB
First Published:	2018-11-12 11:09:57 (5 years ago)
Latest Published:	2021-11-07 21:38:09 (2 years ago)

Analysis:

Status:	Ransom.Blocker (on last analysis)
Analysis Date:	2021-11-07 21:38:09 (2 years ago)

Common Places:

%desktop%

%sysdrive%\games\games2

%sysdrive%\games

%sysdrive%\system volume information\_restore{3d567a09-f95a-463f-92f3-fdcb5f7b5c17}

%sysdrive%\system volume information\_restore{3d567a09-f95a-463f-92f3-fdcb5f7b5c17}

%sysdrive%\system volume information\_restore{3d567a09-f95a-463f-92f3-fdcb5f7b5c17}

%sysdrive%\system volume information\_restore{3d567a09-f95a-463f-92f3-fdcb5f7b5c17}

%sysdrive%\system volume information\_restore{3d567a09-f95a-463f-92f3-fdcb5f7b5c17}

%sysdrive%\system volume information\_restore{3d567a09-f95a-463f-92f3-fdcb5f7b5c17}

%sysdrive%\system volume information\_restore{3d567a09-f95a-463f-92f3-fdcb5f7b5c17}

File Names:

dreamjob movie (9).exe

magicballs.exe

Geography:

	80.0%
	15.0%
	5.0%

OS Version:

Windows XP	80.0%
Windows 7	10.0%
Windows 10	10.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0001caa0

PE Sections:

Name	Size of data	MD5
CODE	113664	7db48a110d0eb315d3b2d9c31821cc88
DATA	2560	02517dc9b380ed65fbe9880d3f0867a0
BSS	0	00000000000000000000000000000000
.idata	5120	10433d6ce7a90d96f997a4380e12225c
.tls	0	00000000000000000000000000000000
.rdata	512	bcd57774d3a0e3c536bd9ede76179d68
.reloc	6656	267f7fd4a936c7bfc81e161dbfb2100d
.rsrc	17920	ad50c6273059ed20b0f932884e87b3d4

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for magicballs.exe

copyright for information about magicballs.exe