How to remove update.exe
update.exe
The module update.exe has been detected as Ransom.Sabsik
File Details
| Product Name: | Calculator Software |
| Company Name: | © 2023 GeniusCorp |
| MD5: | 8325e49eef7544634130ee70a0e5da05 |
| Size: | 10 MB |
| First Published: | 2023-11-09 23:04:53 (2 years ago) |
| Latest Published: | 2023-11-09 23:04:53 (2 years ago) |
| Status: | Ransom.Sabsik (on last analysis) | |
| Analysis Date: | 2023-11-09 23:04:53 (2 years ago) |
Overview
| Signed By: | GeniusCalc |
| Status: | Valid |
Common Places:
| %programfiles%\geniuscalc |
Geography:
| 100.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x007d6a15 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 30720 | 348227f84a71f8484a456b508339f6e0 |
| .data | 5409280 | 4a16e20b1df6ee1431c6038fdd86f7d9 |
| .rdata | 21504 | f0bf2ddc5671a241c9f123074915e8ea |
| .pdata | 2048 | 7f88d258e8ccf6db57d661f861703682 |
| .xdata | 1536 | fb052884c265e0befbe87a61a6c4ede5 |
| .bss | 0 | d41d8cd98f00b204e9800998ecf8427e |
| .idata | 1536 | 0c5c43741bf7d3d933d5ae115ca5e41a |
| .CRT | 512 | 98cc15465ba097962b17fb991af3fb7b |
| .tls | 512 | bf619eac0cdf3f68d496ea9344137e8b |
| 1536 | 88ec8555a1aedf152f8061b720c35128 | |
| .reloc | 512 | ec28eb76e87d99d2c15f691f6be09f53 |
| .idata | 512 | 4a78cbcf57a7180bbf72fd983305b660 |
| .tls | 512 | 12a7b28fa58f8bef30d4e1f347ba4979 |
| .rsrc | 2560 | 814d0d00cbcb35d074ec3d3d615ab131 |
| .themida | 5120000 | 7d68b242456f032ac4bc6ad5138315b2 |
| .reloc | 16 | c021271e799bc947f8a9515833a97d42 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for update.exe
