How to remove services32.exe

» File
File Details
Overview
Analysis

services32.exe

The module services32.exe has been detected as Ransom.Sabsik

services32.exe

Remove services32.exe

File Details

Main Info:

Product Name:	pvhlyflco tdsjmpmui
Company Name:	ryrhgt egzrximy
MD5:	41f68b65d2af9150b1069b9a94f41e5a
Size:	1 MB
First Published:	2021-11-08 21:53:03 (2 years ago)
Latest Published:	2022-01-21 21:46:15 (2 years ago)

Analysis:

Status:	Ransom.Sabsik (on last analysis)
Analysis Date:	2022-01-21 21:46:15 (2 years ago)

Common Places:

%temp%

%appdata%

%appdata%

%temp%

%system%

%temp%

%temp%

%system%

%system%

%appdata%

Geography:

	27.3%
	18.2%
	18.2%
	18.2%
	9.1%
	9.1%

OS Version:

Windows 10	72.7%
Windows 7	27.3%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000000400000
Entry Address:	0x000022fa

PE Sections:

Name	Size of data	MD5
.text	5632	faa0fee85053d2af8e8c2f5ffc936c45
.rdata	2037248	f944c70d006f7506d84aecb3cb49a711
.bss	0	d41d8cd98f00b204e9800998ecf8427e
.pdata	512	833d670d56c423f97067d7571a397b78
.rsrc	1024	8e2911788f99539f98b346dbc955a707

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for services32.exe

copyright for information about services32.exe