How to remove stormphp32.exe

» File
File Details
Overview
Analysis

stormphp32.exe

The module stormphp32.exe has been detected as Ransom.Wacatac

stormphp32.exe

Remove stormphp32.exe

File Details

Main Info:

Product Name:	ImBatch ImageMonitor
MD5:	c4e957d16aa62a944adf0b233e681883
Size:	2 MB
First Published:	2024-04-03 23:06:21 (2 years ago)
Latest Published:	2024-04-03 23:06:21 (2 years ago)

Analysis:

Status:	Ransom.Wacatac (on last analysis)
Analysis Date:	2024-04-03 23:06:21 (2 years ago)

Common Places:

%localappdata%

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x000b91cc

PE Sections:

Name	Size of data	MD5
.text	778240	12bdbf565a42f8a927fbe0a4383d355a
.rdata	12288	9f66e4af777411ee1a3ce2dbdbd425bb
.data	12288	d278f694c930f7d8943588bf5691151a
.rsrc	393216	622e05d3260369d4918866a3554bc895
.SHORT8	986457	7f53db3cd6ff2ba56bebff12ce592bd1

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for stormphp32.exe

copyright for information about stormphp32.exe