How to remove wzdu34 (2016_11_21 06_36_59 UTC).exe

wzdu34 (2016_11_21 06_36_59 UTC).exe

The module wzdu34 (2016_11_21 06_36_59 UTC).exe has been detected as Ransom.Occamy

wzdu34 (2016_11_21 06_36_59 UTC).exe
Remove wzdu34 (2016_11_21 0

File Details

Product Name:

WinZip Driver Updater
Company Name:

WinZip
MD5: 8bc851ed7db0c7b42e938732cb07809e
Size: 11 MB
First Published: 2017-05-22 10:27:42 (8 years ago)
Latest Published: 2025-05-14 23:00:56 (6 months ago)
Status: Ransom.Occamy (on last analysis)
Analysis Date: 2025-05-14 23:00:56 (6 months ago)

Overview

Signed By: WinZip Computing LLC
Status: Valid

Common Places:

%profile%\downloads
%mydoc%\dokumente 2016
%sysdrive%\imab iasq\downloads
%profile%\desktop
%profile%
%sysdrive%\filehistory\bauma_000\pc600\data\c\users\bauma_000.pc600
%desktop%
%sysdrive%\massimo archivio
%sysdrive%\$recycle.bin
%sysdrive%\twinning\2015-2016\meetings

File Names:

wzdu34.exe
wzdu34 (2016_11_21 06_36_59 UTC).exe
wzdu34 (1).exe
wzdu34(1).exe
wzdu34(2).exe
wzdu34(1) (2018_01_20 06_20_35 UTC).exe
wzdu34 (2018_01_20 07_41_31 UTC).exe
wzdu34 (2018_01_20 06_20_35 UTC).exe
wzdu34 (2018_01_20 06_20_35 UTC).exe.quarantined
wzdu34(2) (2018_01_20 06_20_35 UTC).exe
wzdu34(1) (2018_01_20 06_20_35 UTC).exe.quarantined
wzdu34(1) (2018_01_20 07_41_31 UTC).exe

Geography:

56.8%
9.1%
9.1%
4.5%
4.5%
2.3%
2.3%
2.3%
2.3%
2.3%
2.3%
2.3%

OS Version:

Windows 10 79.5%
Windows 8.1 13.6%
Windows 7 6.8%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00003415

PE Sections:

Name Size of data MD5
.text 26624 cb807804553819b70f6e16b8a094d327
.rdata 6656 161b329b4c70ce4fbd9c1143e738896b
.data 512 140876ba314e7bc36379ee5c6db80876
.ndata 0 00000000000000000000000000000000
.rsrc 373248 24e4e3c89a149e603ad861d318d82392

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for wzdu34 (2016_11_21 06_36_59 UTC).exe
copyright for information about wzdu34 (2016_11_21 06_36_59 UTC).exe