How to remove CONH0ST.EXE

CONH0ST.EXE

The module CONH0ST.EXE has been detected as Trojan.CoinMiner

CONH0ST.EXE
Remove CONH0ST.EXE

File Details

Product Name:

Adobe Photoshop CS6
Company Name:

Adobe Systems, Incorporated
MD5: 82f6937507afa459e38804fcf6e5f319
Size: 8 MB
First Published: 2019-04-05 23:25:16 (5 years ago)
Latest Published: 2019-12-05 06:40:58 (5 years ago)
Status: Trojan.CoinMiner (on last analysis)
Analysis Date: 2019-12-05 06:40:58 (5 years ago)

Common Places:

%windir%\fonts
%windir%\fonts
%windir%\fonts
%windir%\fonts
%windir%\fonts
%windir%\fonts
%windir%\fonts
%windir%\fonts
%windir%\fonts
%windir%\fonts

Geography:

39.5%
10.5%
10.5%
5.3%
3.9%
3.9%
3.9%
3.9%
2.6%
2.6%
2.6%
2.6%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%

OS Version:

Windows 10 60.5%
Windows 7 34.2%
Windows 8.1 3.9%
Windows 8 1.3%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000140000000
Entry Address: 0x00b33007

PE Sections:

Name Size of data MD5
.text 0 00000000000000000000000000000000
.rdata 0 00000000000000000000000000000000
.data 0 00000000000000000000000000000000
.pdata 0 00000000000000000000000000000000
.tls 0 00000000000000000000000000000000
.date0 0 00000000000000000000000000000000
.date1 9005568 44e458c35c20cc003e8313f8be06dbf5
.reloc 512 89c2cd1cd95b0d1e7934f5bab738f237
.rsrc 344576 6a3747c91b92912b95f08b7cea29eeeb

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for CONH0ST.EXE
copyright for information about CONH0ST.EXE