How to remove svchost.exe

» File
File Details
Overview
Analysis

svchost.exe

The module svchost.exe has been detected as Ransom.Wacatac

svchost.exe

Remove svchost.exe

File Details

Main Info:

MD5:	61c33d015983d06570ff7f7300c551e2
Size:	147 KB
First Published:	2020-03-18 17:45:13 (5 years ago)
Latest Published:	2021-09-12 20:30:47 (3 years ago)

Analysis:

Status:	Ransom.Wacatac (on last analysis)
Analysis Date:	2021-09-12 20:30:47 (3 years ago)

Common Places:

%profile%

%profile%

Geography:

	50.0%
	25.0%
	25.0%

OS Version:

Windows 10	75.0%
Windows 8	25.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00001d5a

PE Sections:

Name	Size of data	MD5
.text	82432	104eabf1f2df46b5b8b80cf0a37650ae
.rdata	12800	38daeb084826567a29418b99ce484ec8
.data	16896	98889514735bce54e3cf0c757a6ac366
.jeheru	512	bf619eac0cdf3f68d496ea9344137e8b
.rsrc	37376	2868451c0303d6efaf922d9808be47e0

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for svchost.exe

copyright for information about svchost.exe