How to remove Kryptex.exe
- File Details
- Overview
- Analysis
Kryptex.exe
The module Kryptex.exe has been detected as Risk.CoinMiner
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
a7cb60d62eae30d7b301950ef3756313 |
| Size: |
5 MB |
| First Published: |
2018-02-11 17:06:25 (6 years ago) |
| Latest Published: |
2018-11-05 14:11:56 (6 years ago) |
| Status: |
Risk.CoinMiner (on last analysis) |
|
| Analysis Date: |
2018-11-05 14:11:56 (6 years ago) |
Overview
| %localappdata%\kryptex |
| %commonappdata%\олег\kryptex |
| %commonappdata%\admin\kryptex |
| %commonappdata%\djkim\kryptex |
|
70.2% |
|
|
12.8% |
|
|
4.3% |
|
|
2.1% |
|
|
2.1% |
|
|
2.1% |
|
|
2.1% |
|
|
2.1% |
|
|
2.1% |
|
| Windows 10 |
74.5% |
|
| Windows 7 |
14.9% |
|
| Windows 8.1 |
8.5% |
|
| Windows Server 2008 R2 |
2.1% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00540a56 |
| MVID: |
5306186c-0f6d-4e72-8c48-03cbf1f4ef6c |
| Typelib ID: |
3e3950b2-3da8-495a-88f9-918c6d86621c |
| Name |
Size of data |
MD5 |
| .text |
5499904 |
8a988a6d2a4afa094eaf9b7968ba5eed |
| .rsrc |
47616 |
35ab8e0c6d4ae00d7cbbd9e3192f252a |
| .reloc |
512 |
d202300df52871e6ccdf1d799a9f287d |
