How to remove nmGPfMD0qmX.exe
- File Details
- Overview
- Analysis
nmGPfMD0qmX.exe
The module nmGPfMD0qmX.exe has been detected as Ransom.Sabsik
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
67d1a1f6f5f4848eb1dbfcb009cc400c |
| Size: |
1 MB |
| First Published: |
2021-12-06 21:35:01 (3 years ago) |
| Latest Published: |
2021-12-06 21:39:35 (3 years ago) |
| Status: |
Ransom.Sabsik (on last analysis) |
|
| Analysis Date: |
2021-12-06 21:39:35 (3 years ago) |
| %sysdrive%\windows.old\users\h4ck3\appdata |
| %sysdrive%\windows.old\users\h4ck3\appdata |
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00135000 |
| Name |
Size of data |
MD5 |
|
0 |
d41d8cd98f00b204e9800998ecf8427e |
|
512 |
1b1590e3b1d2198a6d297b111ab0ed72 |
| .rsrc |
1044884 |
d319ecd3cd97ef9afa47cbde16dad669 |
|
96578 |
b837647226c2f7e7e5a65260cfe8e56b |
