How to remove z98588L18.exe

» File
File Details
Overview
Analysis

z98588L18.exe

The module z98588L18.exe has been detected as Ransom.Bladabindi

z98588L18.exe

Remove z98588L18.exe

File Details

Main Info:

Product Name:	WinSFX32U for Win32
Company Name:	MicSoft
MD5:	42113f3d6f6258185dc0950d2430ee03
Size:	30 MB
First Published:	2024-09-29 23:02:15 (a year ago)
Latest Published:	2024-09-29 23:02:17 (a year ago)

Analysis:

Status:	Ransom.Bladabindi (on last analysis)
Analysis Date:	2024-09-29 23:02:17 (a year ago)

Overview

Digital Signature

Signed By:	RICOH COMPANY,LTD.
Status:	Valid

Common Places:

%sysdrive%\programas2022\impresoras ric\ricoh mp c6004

%sysdrive%\programas2022\impresoras ric

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00009d20

PE Sections:

Name	Size of data	MD5
.text	52736	8420fad595bd7df2b6d86bd3a44bcc0e
.rdata	1536	6849f1b9f59c539681b10183a1642bd3
.data	15872	b7b45c4747d36860881a62d185b5b3a7
.idata	2560	eba9446ba843835c68b8927a63fbf8ba
.rsrc	4608	8a86bd596e0539fdb18f385e3574ccdc
.reloc	5120	9a0d8e5876729d2f2763f0834af2d60c

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for z98588L18.exe

copyright for information about z98588L18.exe