How to remove rmid.exe
rmid.exe
The module rmid.exe has been detected as Ransom.Sabsik
File Details
MD5: | dde3a34ddcb7490364612b8fc068b5ef |
Size: | 1 MB |
First Published: | 2024-11-28 23:01:19 (2 weeks ago) |
Latest Published: | 2024-11-28 23:01:19 (2 weeks ago) |
Status: | Ransom.Sabsik (on last analysis) | |
Analysis Date: | 2024-11-28 23:01:19 (2 weeks ago) |
Common Places:
%sysdrive%\$recycle.bin\s-1-5-21-1014598480-681888142-1780288057-1002\$rgcfr91\jre6 |
Geography:
100.0% |
OS Version:
Windows 10 | 100.0% |
Analysis
Subsystem: | Windows CUI |
PE Type: | pe |
OS Bitness: | 32 |
Image Base: | 0x00400000 |
Entry Address: | 0x00004337 |
PE Sections:
Name | Size of data | MD5 |
.text | 14336 | ec86aef7877c8d70ae0e6e8f344677a5 |
.rdata | 9728 | 442e045ec151d1acabbed808ecd26f6b |
.data | 512 | 7a8e1fc86516a13d9cf4f428b81e52ff |
.rsrc | 1499136 | 5a8ac442b551c1df619b4a0fe56d94eb |
More information:
Download GridinSoft
Anti-Malware - Removal tool for rmid.exe