Using this site

Please ensure you understand and agree with our data protection policy before using this site. Review Policy

Stupido Ransomware STOP/Djvu Analysis

Ransomware STOP/Djvu
Updated on 2024-02-05 (2 months ago)
Checked by Online Virus Scanner
Online Virus Checkerv.1.0.158.174
DB Version:2024-02-05 06:00:28

Ransom.Win32.STOP.tr

STOP/Djvu Ransomware, also known simply as STOP Ransomware or Djvu Ransomware, is a type of malicious software that encrypts the files on a victim's computer and demands a ransom for their decryption. This ransomware variant has been active for several years and has affected numerous users and organizations.

FileStupido
Checked2024-02-05 06:48:34
MD5faf9bf89fd060a85d2fcc98e9d511a8b
SHA108d256665c3aa89eafa123cfb965c8c1b4b5f5d0
SHA25697cb23085479e9562332ae56eed070d3c9a001518066132ec5d24041336bcf98
SHA512318bb22a79f511421f209f0ee1a8367addfa4c7355f4000bce80b2d18beab450d927c2910eb3f4f2e6f7b5924c623f531eb9c46c80e11123298af721054c4ba1
Imphashebe35e0085e613a421d4abea9476d495
File Size793088 bytes

Ransom.Win32.STOP.tr Removal

Ransom.Win32.STOP.tr Removal

Gridinsoft has the capability to identify and eliminate Ransom.Win32.STOP.tr without requiring further user intervention.

  • Start by downloading Gridinsoft Anti-Malware to your computer.
  • Double-click on the gsam-en-install.exe file and follow the on-screen instructions to install the program.
  • Once the installation of Gridinsoft Anti-Malware is complete, the program will open on the Scan screen.
  • Click on the "Standard Scan" button.
  • After the scanning process is finished, click on "Clean Now" to remove any detected threats.
  • If prompted, restart your system to complete the removal process.

File Version Information

FileVersion67.89.5.53
ProductVersion61.55.12.25
InternalNameStupido
LegalCopyrightSilent news
CompanyNameTorque
Translation0x179b 0x02fb

Portable Executable Info

48ed4901907c6101bbadd0dbada6f794
a601d18453d55868098ac1200c136d7e
d2f0e4c4e4f9c6f9
Image Base:0x00400000
Entry Point:0x004016ff
Compilation:2023-02-09 18:15:46
Checksum:0x000c8b1a (Actual: 0x000c8b1a)
OS Version:5.1
PEiD:PE32 executable (GUI) Intel 80386, for MS Windows
Sign:The PE file does not contain a certificate table.
Sections:7
Imports: KERNEL32, USER32, ADVAPI32,
Exports: 0
Resources:27

Sections

Name Virtual Address Virtual Size Raw Size MD5 Entropy
.text 0x00001000 0x000ab39e 0x000ab400 a2816f7bf4974a67a414947a178ed6ae 7.92
.rdata 0x000ad000 0x0000360c 0x00003800 191fd17513bf5ad31aee17321515198e 4.99
.data 0x000b1000 0x00008044 0x00002200 ef3fa80fe4162e0bbd662362e18980fa 2.13
.lubab 0x000ba000 0x0000007c 0x00000200 bf619eac0cdf3f68d496ea9344137e8b 0.00
.tls 0x000bb000 0x000009cd 0x00000a00 a371492f16c0940507435909603efe88 0.00
.cimi 0x000bc000 0x00000400 0x00000400 0f343b0931126a20f133d67c2b018a3b 0.00
.rsrc 0x000bd000 0x0000f658 0x0000f800 3263639fe4e76189b15b337e889badd3 5.97

Leave a comment*

Share your thoughts or insights about this file. Do you align with our conclusion?

*Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Please Wait...

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Learn more Download Now
Gridinsoft Anti-Malware