How to remove Guard.exe
Guard.exe
The module Guard.exe has been detected as Trojan.CoinMiner
File Details
| MD5: | 309e5af5ff2151e844d82e353e3fe1ee |
| Size: | 116 KB |
| First Published: | 2018-01-12 06:08:53 (7 years ago) |
| Latest Published: | 2018-10-30 13:10:48 (6 years ago) |
| Status: | Trojan.CoinMiner (on last analysis) | |
| Analysis Date: | 2018-10-30 13:10:48 (6 years ago) |
Overview
| Signed By: | Garry Lachman |
| Status: | Valid |
Common Places:
| %programfiles%\system native |
Geography:
| 29.7% | ||
| 9.3% | ||
| 8.5% | ||
| 8.5% | ||
| 5.9% | ||
| 5.9% | ||
| 3.4% | ||
| 2.5% | ||
| 2.5% | ||
| 2.5% | ||
| 1.7% | ||
| 1.7% | ||
| 1.7% | ||
| 1.7% | ||
| 1.7% | ||
| 1.7% | ||
| 1.7% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% | ||
| 0.8% |
OS Version:
| Windows 7 | 54.2% | |
| Windows 10 | 39.8% | |
| Windows 8.1 | 4.2% | |
| Windows 8 | 1.7% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x00002248 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 73728 | 88c00f4921e8fa23f691e6bde110df3d |
| .rdata | 29184 | 76d15629d8b682c42eefac5e9da39a89 |
| .data | 2560 | 6b56c0c98a0bf71b623d254a63590fc3 |
| .rsrc | 1024 | b01a018e993e2b19814357c6d9bca22f |
| .reloc | 4608 | 4aaa65797cf3c4c8bc22bb3d679f4f2a |
More information:
Download GridinSoft
Anti-Malware - Removal tool for Guard.exe
