How to remove AMD.exe
AMD.exe
The module AMD.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: | MicrosoftHost |
| Company Name: | Microsoft Corporation |
| MD5: | b591e3148e23450c4386df570ab9d01e |
| Size: | 855 KB |
| First Published: | 2018-07-17 09:11:32 (6 years ago) |
| Latest Published: | 2018-10-13 06:08:43 (6 years ago) |
| Status: | Trojan.CoinMiner (on last analysis) | |
| Analysis Date: | 2018-10-13 06:08:43 (6 years ago) |
Common Places:
| %commonappdata% |
Geography:
| 56.5% | ||
| 34.8% | ||
| 4.3% | ||
| 4.3% |
OS Version:
| Windows 7 | 82.6% | |
| Windows 10 | 8.7% | |
| Windows 8.1 | 8.7% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x00059408 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 508416 | cd098a81d03906d4d1b9e2952653257c |
| .rdata | 238592 | c43eefa1c69147eca8a758281399c462 |
| .data | 50176 | c7e87eb3283c9173ab3871af222b09b0 |
| .pdata | 24064 | b7c599af745f50d175f4dfad8c04a005 |
| .rsrc | 48640 | 94bf97a8db914608261931962fab8267 |
| .reloc | 4608 | d6d7368a79e2a4c62d5e675ad54909c1 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for AMD.exe
