How to remove mongorestore.exe
- File Details
- Overview
- Analysis
mongorestore.exe
The module mongorestore.exe has been detected as Ransom.Exp
File Details
| MD5: |
bd078dc4a27c5259b15b1bd463b8b911 |
| Size: |
12 MB |
| First Published: |
2020-02-06 19:36:46 (5 years ago) |
| Latest Published: |
2021-06-22 20:27:06 (4 years ago) |
| Status: |
Ransom.Exp (on last analysis) |
|
| Analysis Date: |
2021-06-22 20:27:06 (4 years ago) |
| %sysdrive%\distr\ospanel\modules\database |
| %sysdrive%\distr\ospanel\modules\database |
| %sysdrive%\ospanel\modules\database |
| %profile%\downloads\ospanel\modules\database |
| %sysdrive%\distr\ospanel\modules\database |
| %sysdrive%\distr\ospanel\modules\database |
| %sysdrive%\openserver\ospanel\modules\database |
| %sysdrive%\distr\ospanel\modules\database |
| %sysdrive%\ospanel\modules\database |
| %sysdrive%\programz\openserver\ospanel\modules\database |
|
46.4% |
|
|
32.1% |
|
|
7.1% |
|
|
3.6% |
|
|
3.6% |
|
|
3.6% |
|
|
3.6% |
|
| Windows 10 |
72.4% |
|
| Windows 7 |
17.2% |
|
| Windows 8.1 |
6.9% |
|
| Windows Server 2012 R2 |
3.4% |
|
Analysis
| Subsystem: |
Windows CUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00052d70 |
| Name |
Size of data |
MD5 |
| .text |
11100160 |
c0a1349768a2f559c96171323e5310fd |
| .data |
85504 |
c8c302bbe5636a1595491fe5636f0382 |
| /4 |
512 |
121d8cafa17faffb71d001e3f660db47 |
| /18 |
239104 |
dbac23ea4158ca7d1b1c5e9c20b00ab3 |
| /30 |
184320 |
4f6916b8b42a387e18ffba4a45b323f8 |
| /43 |
293888 |
4ce89e78841521cee8f89e73e3868663 |
| /59 |
134144 |
48b6f44220060f6dd2569f4041b2b4d5 |
| /75 |
512 |
934f57e1452f6dd11b5125a3a9d67ea7 |
| /90 |
890368 |
8969adf318d3b27843bca4ed87ba8949 |
| .idata |
1536 |
73c3eb3dce3cb80e675ebbb1acebba30 |
| .symtab |
403968 |
37d57c3b5cde1e2f346333d2d48a2791 |
