How to remove rsiro.exe
rsiro.exe
The module rsiro.exe has been detected as Ransom.Wacatac
File Details
| Product Name: | rsiro Application |
| MD5: | 091b6e78f54aeb1cd2d03485b880752b |
| Size: | 131 KB |
| First Published: | 2018-08-17 15:18:44 (6 years ago) |
| Latest Published: | 2023-01-18 23:23:21 (2 years ago) |
| Status: | Ransom.Wacatac (on last analysis) | |
| Analysis Date: | 2023-01-18 23:23:21 (2 years ago) |
Overview
| Signed By: | Rockwell Automation |
| Status: | Valid |
Common Places:
| %commonstartup% |
| %sysdrive%\cell\cell engineering pty ltd\cell engineering - general\temp\8.20.00-ftview-dvd\3.80.00-rslinxclassic-lite |
Geography:
| 50.0% | ||
| 50.0% |
OS Version:
| Windows 7 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x0000235e |
PE Sections:
| Name | Size of data | MD5 |
| .text | 73728 | e63715ad1db3fa8c6ff4aa3ae94db24c |
| .rdata | 20480 | 1637cf28b5aa47a8127b646a39496d8b |
| .data | 16384 | 62f85aeacb83f79ea648db55c207f71a |
| .rsrc | 12288 | 907240ff26569b7878eded4fd8ba175e |
More information:
Download GridinSoft
Anti-Malware - Removal tool for rsiro.exe
