How to remove superwiser_crypted.exe
- File Details
- Overview
- Analysis
superwiser_crypted.exe
The module superwiser_crypted.exe has been detected as Ransom.Sabsik
File Details
Product Name: |
|
Company Name: |
|
MD5: |
94c9fb2504f1f5e6b109104e064189f4 |
Size: |
1 MB |
First Published: |
2021-12-14 21:48:33 (3 years ago) |
Latest Published: |
2021-12-14 21:48:33 (3 years ago) |
Status: |
Ransom.Sabsik (on last analysis) |
|
Analysis Date: |
2021-12-14 21:48:33 (3 years ago) |
%sysdrive%\windows.old\users\dct\appdata\local\temp |
Analysis
Subsystem: |
Windows GUI |
PE Type: |
pe |
OS Bitness: |
32 |
Image Base: |
0x00400000 |
Entry Address: |
0x00001000 |
Name |
Size of data |
MD5 |
|
72704 |
d75ee1d481b7a98c6912c4fdfcc71d6d |
|
2560 |
65266ae4ae4210e0f27c2d5ad0a28a2f |
|
25088 |
4080aa109dcf55a62e455043490a3fb5 |
|
1024 |
b51de3556c8659c9a45d46b2ee5b708b |
|
75776 |
bcc77335272b8f8c54f07a56e1bf335b |
|
5632 |
0d977b2cbcc45f07e4596f629cf298ef |
|
512 |
541e94e299f94838740a01695deaee28 |
|
1536 |
f65057cd1e5788def70dd2bfdeb35522 |
|
512 |
7b36a67c49c7030ad46bdb38f504ef95 |
.rsrc |
1536 |
f0b38d8cc7a02086d13dcf5a086a4124 |
|
0 |
d41d8cd98f00b204e9800998ecf8427e |
|
978944 |
96dd99a3f92780f2a38a2898494313bc |
.q443APa |
305152 |
06ee152c6763e2ebdd99f790ae53b0bd |
.adata |
0 |
d41d8cd98f00b204e9800998ecf8427e |