How to remove zGUI.exe

zGUI.exe

The module zGUI.exe has been detected as Ransom.Wacatac

zGUI.exe
Company Name:

沧州微酷网络科技有限公司

MD5: 594bb5a5edf0d443fba94e22079798db
Size: 2 MB
First Published: 2022-04-26 23:35:30 (3 years ago)
Latest Published: 2022-05-13 23:30:13 (3 years ago)
Status: Ransom.Wacatac (on last analysis)
Analysis Date: 2022-05-13 23:30:13 (3 years ago)
Signed By: 沧州微酷网络科技有限公司
Status: Valid
%localappdata%
%localappdata%
100.0%
Windows 10 100.0%
Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000f2c07

PE Sections:

Name Size of data MD5
.text 1333248 d6a914f07c8675d9d75ce5ef42ee404f
.rdata 269824 ac22d8ff2420cb6210bd46f2a642b2f1
.data 13824 0bdbf59e73bef43fb6727db5ed9816e5
.rsrc 489472 9fb1c268884db57cd2cd93838a5012fa

More information:

Download GridinSoft Anti-Malware - Removal tool for zGUI.exe