How to remove MISA Remote Support.exe

MISA Remote Support.exe

The module MISA Remote Support.exe has been detected as Trojan.CoinMiner

MISA Remote Support.exe
Remove MISA Remote Support.

File Details

MD5: 3d5839fec552717ed87daf9f5fd718f8
Size: 1 MB
First Published: 2017-09-15 02:07:25 (7 years ago)
Latest Published: 2021-01-07 12:38:47 (4 years ago)
Status: Trojan.CoinMiner (on last analysis)
Analysis Date: 2021-01-07 12:38:47 (4 years ago)

Overview

Signed By: TeamViewer GmbH
Status: Valid

Common Places:

%appdata%\temp\misa.sme.net 2017 installer\winroot\misa jsc\misa sme.net 2017\misa remote support
%appdata%\temp\misa.sme.net 2017 installer\winroot\misa jsc\misa sme.net 2017
%appdata%\temp\misa.sme.net 2017 installer\winroot\misa jsc\misa sme.net 2017
%appdata%\temp\misa.sme.net 2017 installer\winroot\misa jsc\misa sme.net 2017
%appdata%\temp\misa.sme.net 2017 installer\winroot\misa jsc\misa sme.net 2017
%appdata%\temp\misa.sme.net 2017 installer\winroot\misa jsc\misa sme.net 2017
%appdata%\temp\misa.sme2019\winroot\misa jsc\misa sme.net 2019
%appdata%\temp\misa.sme.net 2017 installer\winroot\misa jsc\misa sme.net 2017
%appdata%\temp\misa.sme.net 2017 installer\winroot\misa jsc\misa sme.net 2017
%appdata%\temp\misa.sme.net 2017 installer\winroot\misa jsc\misa sme.net 2017

Geography:

99.4%
0.6%

OS Version:

Windows 10 46.9%
Windows 7 38.9%
Windows 8.1 9.1%
Windows Server 2012 R2 3.4%
Windows 8 0.6%
Windows Server 2008 R2 0.6%
Windows Server 2016 0.6%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00034240

PE Sections:

Name Size of data MD5
UPX0 0 00000000000000000000000000000000
UPX1 17408 643002a7153bdce2ac3a58930b6a48db
.rsrc 24576 ce2d1b3b01ed3682c0318572a0e5ac51

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for MISA Remote Support.exe
copyright for information about MISA Remote Support.exe