How to remove AMD.exe
AMD.exe
The module AMD.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: | MicrosoftHost |
| Company Name: | Microsoft Corporation |
| MD5: | 164ee5e4746831ae09678ec024ddd553 |
| Size: | 855 KB |
| First Published: | 2018-09-01 06:12:52 (6 years ago) |
| Latest Published: | 2018-10-10 01:10:06 (6 years ago) |
| Status: | Trojan.CoinMiner (on last analysis) | |
| Analysis Date: | 2018-10-10 01:10:06 (6 years ago) |
Common Places:
| %commonappdata% |
Geography:
| 62.5% | ||
| 25.0% | ||
| 12.5% |
OS Version:
| Windows 7 | 50.0% | |
| Windows 8.1 | 25.0% | |
| Windows 10 | 25.0% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x00059408 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 508416 | cd098a81d03906d4d1b9e2952653257c |
| .rdata | 238592 | c43eefa1c69147eca8a758281399c462 |
| .data | 50176 | c7e87eb3283c9173ab3871af222b09b0 |
| .pdata | 24064 | b7c599af745f50d175f4dfad8c04a005 |
| .rsrc | 48640 | 1480a804f9d9f2a9dd26181cfd3e840f |
| .reloc | 4608 | d6d7368a79e2a4c62d5e675ad54909c1 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for AMD.exe
