How to remove sihost64.exe

» File
File Details
Overview
Analysis

sihost64.exe

The module sihost64.exe has been detected as Ransom.Wacatac

sihost64.exe

Remove sihost64.exe

File Details

Main Info:

Product Name:	Opera GX Internet Browser
Company Name:	Opera Software
MD5:	e5ec0de81402842d1e27a2234d978e53
Size:	1 MB
First Published:	2023-04-16 23:22:33 (2 years ago)
Latest Published:	2023-04-16 23:22:33 (2 years ago)

Analysis:

Status:	Ransom.Wacatac (on last analysis)
Analysis Date:	2023-04-16 23:22:33 (2 years ago)

Common Places:

%appdata%\common files

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000000400000
Entry Address:	0x00376000

PE Sections:

Name	Size of data	MD5
	65536	9b85e05844b0f521f70eb55d5318eb4f
.rsrc	2048	f5531887848b0dbfd425da7393c5f9d5
.idata	512	083a098821aefc3b5cf801b5407b9a44
	512	e3647c428c6c6b977e22149a44b6d5cb
maxfzivy	1315840	7b91a30b759ae9326a6cee838df48b63
mawtgybh	512	a8b2b2210d47635c1b50b29ac182f3f9

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for sihost64.exe

copyright for information about sihost64.exe