How to remove paintball.exe
- File Details
- Overview
- Analysis
paintball.exe
The module paintball.exe has been detected as Ransom.Blocker
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
1818b6ae8aed95d0a0e413bda9368a99 |
| Size: |
753 KB |
| First Published: |
2018-11-13 08:13:13 (7 years ago) |
| Latest Published: |
2021-11-07 21:42:44 (4 years ago) |
| Status: |
Ransom.Blocker (on last analysis) |
|
| Analysis Date: |
2021-11-07 21:42:44 (4 years ago) |
| %sysdrive% |
| %sysdrive%\games\games2 |
| %sysdrive%\ألعاب\crazy taxi |
| %sysdrive%\ألعاب\crazy taxi |
| PAINT_BALL.EXE |
| paintball.exe |
| Windows 7 |
50.0% |
|
| Windows 10 |
50.0% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x0001caa0 |
| Name |
Size of data |
MD5 |
| CODE |
113664 |
7db48a110d0eb315d3b2d9c31821cc88 |
| DATA |
2560 |
02517dc9b380ed65fbe9880d3f0867a0 |
| BSS |
0 |
00000000000000000000000000000000 |
| .idata |
5120 |
10433d6ce7a90d96f997a4380e12225c |
| .tls |
0 |
00000000000000000000000000000000 |
| .rdata |
512 |
bcd57774d3a0e3c536bd9ede76179d68 |
| .reloc |
6656 |
267f7fd4a936c7bfc81e161dbfb2100d |
| .rsrc |
17920 |
dfe1df6e1b7af4296ac122d544f92e69 |
