How to remove ml20201223.exe

ml20201223.exe

The module ml20201223.exe has been detected as Ransom.Wacatac

ml20201223.exe
Remove ml20201223.exe

File Details

MD5: d54ade674cb0c3e6d322ed7380e8adf6
Size: 3 MB
First Published: 2020-12-23 12:03:32 (3 years ago)
Latest Published: 2022-05-05 23:48:42 (2 years ago)
Status: Ransom.Wacatac (on last analysis)
Analysis Date: 2022-05-05 23:48:42 (2 years ago)

Common Places:

%temp%
%temp%
%temp%
%temp%
%temp%
%temp%
%temp%
%temp%
%temp%
%temp%

Geography:

10.4%
9.1%
7.3%
7.1%
6.8%
4.1%
3.8%
3.0%
2.8%
2.8%
2.5%
2.0%
2.0%
1.8%
1.8%
1.5%
1.5%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%
1.0%
1.0%
1.0%
1.0%
1.0%
1.0%
0.8%
0.8%
0.8%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%

OS Version:

Windows 10 85.6%
Windows 7 11.4%
Windows 8.1 2.5%
Windows Vista 0.5%

Analysis

Subsystem: Windows CUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x0005ad30

PE Sections:

Name Size of data MD5
.text 1344000 ea46aa28f761b2c13cde4a91402690ff
.rdata 1211392 fcf7336d6cabd74cd7c324b113308726
.data 95232 9e0094fcc77b12e0a15fd7cbeaa50894
/4 512 28a3e9c96b9bb43e6541a26c8f68899b
/19 237056 ac7545a4a2db7844c441361a10f27669
/32 49664 ae5614219d972281db30432b6c18f909
/46 11264 77999750a94d614629e396942ad28a09
/63 27648 84f3470720da7a26cd1fb002f06351b9
/80 512 56d08c10aa9e5c0c3680f67f8992b3d4
/99 377344 42b3cf32edf3791142411277f4a7a0fc
/112 254976 c32b017c29d61daf5d23737bd1ba079f
/124 72704 d64752d94de2165946effbdbae99f85d
.idata 1024 03dc2fca7039fd147e9eb04664c6b799
.reloc 95744 69ff8f4d9b6ad3ad76c80773de16cbab
.symtab 253952 347cb370920e0f4e7dbd6da36e25adea

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for ml20201223.exe
copyright for information about ml20201223.exe