How to remove AMD.exe
AMD.exe
The module AMD.exe has been detected as Risk.CoinMiner
File Details
| Product Name: | MicrosoftHost |
| Company Name: | Microsoft Corporation |
| MD5: | 0bcd0826c883e5e9d445a7b4192eee04 |
| Size: | 802 KB |
| First Published: | 2018-06-02 12:12:49 (6 years ago) |
| Latest Published: | 2018-11-13 17:06:50 (6 years ago) |
| Status: | Risk.CoinMiner (on last analysis) | |
| Analysis Date: | 2018-11-13 17:06:50 (6 years ago) |
Common Places:
| %commonappdata% |
Geography:
| 76.9% | ||
| 7.7% | ||
| 7.7% | ||
| 7.7% |
OS Version:
| Windows 7 | 69.2% | |
| Windows 10 | 23.1% | |
| Windows 8.1 | 7.7% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x000540b8 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 486912 | 9b68301f4b80085e7fa16aba6ebb958a |
| .rdata | 231424 | bc332e78a3199b8d8af7deb9f17f7591 |
| .data | 50176 | 8c0401dc8303eda258faa53bfc0c8ba6 |
| .pdata | 24064 | 5fe044270b50aab32f021bac31d004ec |
| .rsrc | 23552 | 5c3cbfdaa08dad1c60cab0c76c0b839e |
| .reloc | 4608 | 35c73a1fcece4c608fd9d2ede020460c |
More information:
Download GridinSoft
Anti-Malware - Removal tool for AMD.exe
