How to remove Windows__Update.exe

» File
File Details
Overview
Analysis

Windows__Update.exe

The module Windows__Update.exe has been detected as Ransom.Sabsik

Windows__Update.exe

Remove Windows__Update.exe

File Details

Main Info:

Product Name:	php_fFVqfUgQ06lbsT8C
Company Name:	php_fFVqfUgQ06lbsT8C
MD5:	c8874fc9793e6f4b217ff89171c0db26
Size:	650 KB
First Published:	2022-08-05 23:29:42 (2 years ago)
Latest Published:	2022-08-10 00:00:12 (2 years ago)

Analysis:

Status:	Ransom.Sabsik (on last analysis)
Analysis Date:	2022-08-10 00:00:12 (2 years ago)

Common Places:

%programfiles%

Geography:

	50.0%
	50.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00052efe

.NET Info:

MVID:	288dc6ad-7e82-4b26-b785-ad4d679aecce
Typelib ID:	c1602b31-709e-4671-a7fa-e3949c0c4312

PE Sections:

Name	Size of data	MD5
.text	331776	532c77ac71b727b2d5ebb5f36c79b65c
.sdata	1024	5071e524b0504f3f20247398b8fed0b5
.rsrc	331776	362104367f5ffb99c61c6ad8be7ebb2c
.reloc	512	af653b8d97d78ee800a32c9112332477

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for Windows__Update.exe

copyright for information about Windows__Update.exe