MenuExtendido.exe Ransomware STOP/Djvu Analysis

Ransomware STOP/Djvu
Updated on 2024-01-25 (2 months ago)
Checked by Online Virus Scanner
Online Virus Checkerv.1.0.155.174
DB Version:2024-01-25 11:02:33

Ransom.Win32.STOP.dg!se51856

STOP/Djvu Ransomware, also known simply as STOP Ransomware or Djvu Ransomware, is a type of malicious software that encrypts the files on a victim's computer and demands a ransom for their decryption. This ransomware variant has been active for several years and has affected numerous users and organizations.

FileMenuExtendido.exe
Checked2024-01-25 11:18:28
MD50b5eb3cb4a95e162d69a20e6c1ecf7b5
SHA1bac8d203231a5701e4738967d53f3647931dfb5c
SHA25639c52799056c0b5aecf1ac8084b6a307896603e8520430d1411962b76d70cb78
SHA512031be0f3654034f014c14b773aba68c2bc3fbc8d428f51075abd67672c8a98a7bc374ac6ff29530c6be60a57ba728f76d514d5b71b85842e5173bb6b8dfd7940
Imphash2f727a975c44a2925ace416e4a5ad2d8
File Size11082240 bytes

Ransom.Win32.STOP.dg!se51856 Removal

Ransom.Win32.STOP.dg!se51856 Removal

Gridinsoft has the capability to identify and eliminate Ransom.Win32.STOP.dg!se51856 without requiring further user intervention.

  • Start by downloading Gridinsoft Anti-Malware to your computer.
  • Double-click on the gsam-en-install.exe file and follow the on-screen instructions to install the program.
  • Once the installation of Gridinsoft Anti-Malware is complete, the program will open on the Scan screen.
  • Click on the "Standard Scan" button.
  • After the scanning process is finished, click on "Clean Now" to remove any detected threats.
  • If prompted, restart your system to complete the removal process.

File Version Information

CommentsCreado con AutoPlay Media Studio (www.indigorose.com)
CompanyNameDoofy´s Projects
FileDescriptionMenu Extendido para Windows
FileVersion7.3.0.0
InternalNameams_runtime
LegalCopyright© Doofy´s Projects
OriginalFilenameMenuExtendido.exe
ProductNameMenuExtendido
ProductVersion7.3.0.0
Translation0x0409 0x0000

Portable Executable Info

493f48d7fa0f12541d258d62ca498b1d
7b303b99564165eadb247d64411b19ea
c0dce8e8e8e8dcc4
Image Base:0x00400000
Entry Point:0x00644f2b
Compilation:2015-02-10 21:03:05
Checksum:0x00000000 (Actual: 0x00a9dde0)
OS Version:5.0
PEiD:PE32 executable (GUI) Intel 80386, for MS Windows
Sign:The PE file does not contain a certificate table.
Sections:6
Imports: kernel32, user32, advapi32, oleaut32, ole32, ntdll, SHFolder, shlwapi,
Exports: 0
Resources:738

Sections

Name Virtual Address Virtual Size Raw Size MD5 Entropy
.text 0x00001000 0x003d80d4 0x003d8200 48372a2fddf5240e0d09df123a52d31d 6.66
.rdata 0x003da000 0x000d5798 0x000d5800 762f7ea9280ce4931523d3ac2acc2acb 5.27
.data 0x004b0000 0x00076b58 0x00024400 e57e9c9325c8bb5af6716dec814c194a 5.35
.rsrc 0x00527000 0x001667a4 0x00166800 a99e2fb65a248890d45e608484e8c37f 7.35
.enigma1 0x0068e000 0x00001000 0x00412000 5c167ca2d03f2f4ce9e534146872b662 7.88
.enigma2 0x0068f000 0x00047000 0x00047000 41ad950b5dc6b0438dde60417e0dc1b3 5.89

Leave a comment*

Share your thoughts or insights about this file. Do you align with our conclusion?

*Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Please Wait...

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Gridinsoft Anti-Malware