How to remove winrar-x64-600.exe

winrar-x64-600.exe

The module winrar-x64-600.exe has been detected as Ransom.Wacatac

winrar-x64-600.exe
Remove winrar-x64-600.exe

File Details

Product Name:

WinRAR
Company Name:

Alexander Roshal
MD5: 2498cc397841bfd6543dd869c855d519
Size: 3 MB
First Published: 2021-01-02 03:11:14 (4 years ago)
Latest Published: 2021-01-02 03:12:07 (4 years ago)
Status: Ransom.Wacatac (on last analysis)
Analysis Date: 2021-01-02 03:12:07 (4 years ago)

Overview

Signed By: win.rar GmbH
Status: Valid

Common Places:

%desktop%\new folder
%chromeprofile%

Geography:

100.0%

OS Version:

Windows 8.1 100.0%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000140000000
Entry Address: 0x00023f30

PE Sections:

Name Size of data MD5
.text 220672 c9e972cef082b861567c558a4271a0b1
.rdata 65024 a57da3ac5cea4e775f3789d61d1cb6f6
.data 4608 eb8549ba1c27f2472be742d60ec74233
.pdata 10752 c72992c4c5958b0e197ac6a1d173be74
.didat 1024 e8336a41833c3717738ec51506c0a5da
.rsrc 156160 add2f5de319414fc972b50ec6fd4bc0d
.reloc 2560 50054e7a03268fac391f167c03ea6eb6

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for winrar-x64-600.exe
copyright for information about winrar-x64-600.exe