How to remove zGUI.exe

» File
File Details
Overview
Analysis

zGUI.exe

The module zGUI.exe has been detected as Ransom.Wacatac

zGUI.exe

Remove zGUI.exe

File Details

Main Info:

Company Name:	沧州微酷网络科技有限公司
MD5:	594bb5a5edf0d443fba94e22079798db
Size:	2 MB
First Published:	2022-04-26 23:35:30 (3 years ago)
Latest Published:	2022-05-13 23:30:13 (3 years ago)

Analysis:

Status:	Ransom.Wacatac (on last analysis)
Analysis Date:	2022-05-13 23:30:13 (3 years ago)

Overview

Digital Signature

Signed By:	沧州微酷网络科技有限公司
Status:	Valid

Common Places:

%localappdata%

%localappdata%

Geography:

100.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x000f2c07

PE Sections:

Name	Size of data	MD5
.text	1333248	d6a914f07c8675d9d75ce5ef42ee404f
.rdata	269824	ac22d8ff2420cb6210bd46f2a642b2f1
.data	13824	0bdbf59e73bef43fb6727db5ed9816e5
.rsrc	489472	9fb1c268884db57cd2cd93838a5012fa

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for zGUI.exe

copyright for information about zGUI.exe