How to remove nOGRxX
nOGRxX
The module nOGRxX has been detected as Ransom.STOP
File Details
| Product Name: | Broadways |
| Company Name: | MagicWind |
| MD5: | 5b9b32c88e39091c5221632e95d38f58 |
| Size: | 4 MB |
| First Published: | 2023-06-08 23:08:18 (2 years ago) |
| Latest Published: | 2023-06-08 23:32:52 (2 years ago) |
| Status: | Ransom.STOP (on last analysis) | |
| Analysis Date: | 2023-06-08 23:32:52 (2 years ago) |
Overview
| Signed By: | 522910322628070b250c52200b542f1a57031b422732351e332f4620190820022d0b |
| Status: | Valid |
Common Places:
| %temp% |
| %localappdata%\microsoft\windows\inetcache\ie |
Geography:
| 100.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x00005b41 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 77312 | 8207d56b4b69efd37cbd107b89a69e47 |
| .data | 4166656 | 85ab2c6fd5b4d88bc16d368d577f6a3a |
| .rsrc | 124928 | ef9bf2e843b3e5d7a47bfc6d6d82e46f |
More information:
Download GridinSoft
Anti-Malware - Removal tool for nOGRxX
