How to remove rmid.exe

rmid.exe

The module rmid.exe has been detected as Ransom.Sabsik

rmid.exe
MD5: dde3a34ddcb7490364612b8fc068b5ef
Size: 1 MB
First Published: 2024-11-28 23:01:19 (2 weeks ago)
Latest Published: 2024-11-28 23:01:19 (2 weeks ago)
Status: Ransom.Sabsik (on last analysis)
Analysis Date: 2024-11-28 23:01:19 (2 weeks ago)
%sysdrive%\$recycle.bin\s-1-5-21-1014598480-681888142-1780288057-1002\$rgcfr91\jre6
100.0%
Windows 10 100.0%
Subsystem: Windows CUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00004337

PE Sections:

Name Size of data MD5
.text 14336 ec86aef7877c8d70ae0e6e8f344677a5
.rdata 9728 442e045ec151d1acabbed808ecd26f6b
.data 512 7a8e1fc86516a13d9cf4f428b81e52ff
.rsrc 1499136 5a8ac442b551c1df619b4a0fe56d94eb

More information:

Download GridinSoft Anti-Malware - Removal tool for rmid.exe