How to remove MSVC.exe

MSVC.exe

The module MSVC.exe has been detected as Risk.CoinMiner

MSVC.exe
Remove MSVC.exe

File Details

Product Name:

XMRig
Company Name:

www.xmrig.com
MD5: 0edf483cb742740fad06d40d2221b2bb
Size: 641 KB
First Published: 2017-06-23 10:09:38 (8 years ago)
Latest Published: 2025-01-11 23:06:00 (10 months ago)
Status: Risk.CoinMiner (on last analysis)
Analysis Date: 2025-01-11 23:06:00 (10 months ago)

Common Places:

%appdata%\ielast
%appdata%\wshshell
%appdata%\testservice
%appdata%\smotri2
%appdata%\mmvc
%sysdrive%\xampp\htdocs
%sysdrive%\$recycle.bin\s-1-5-21-451828620-3914189304-2174944317-500
%appdata%\fixmix
%appdata%\msvc
%appdata%\ieservise

File Names:

MSVC32.exe
MSVC.exe
li1ew.exe
xmrig32.exe
$RA9XL3Z.exe
$RWYEQ33.exe
v.exe
liew.exe
MVIC.exe
MSVCCPU32.exe
BITF6E.tmp
BIT5423.tmp
BIT7328.tmp
BITEC23.tmp
BIT38EB.tmp
systemexp.exe
Carbon.exe
system.exe
Core32.exe
bit64.exe
bit64.exe.quarantined
xmrig.exe

Geography:

59.8%
9.4%
9.1%
6.9%
5.8%
2.2%
1.1%
1.1%
0.7%
0.7%
0.7%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%

OS Version:

Windows 7 81.2%
Windows Server 2008 R2 8.7%
Windows 8 5.1%
Windows Server 2012 R2 2.2%
Windows 10 1.8%
Windows 8.1 0.7%
Windows Embedded Standard 0.4%

Analysis

Subsystem: Windows CUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000014e0

PE Sections:

Name Size of data MD5
.text 508416 6433adaa41a904239a31788c0bf90c99
.data 1024 eea28b6b6898312b2896faae652a6548
.rdata 52224 17a77e2ce9742395a079287721cf5844
.eh_fram 66048 2e7a1f7c76119feec17d88d6c1462827
.bss 0 00000000000000000000000000000000
.idata 9216 5be83a9dc09844309c0b0b2cee68772d
.CRT 512 0d06e67a9cd3fc50f58e3aaf9d8dd023
.tls 512 1c7243a87b62f5287f870b7c450b127b
.rsrc 17360 1055dc639c6b2616ad10983cd816e7cc

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for MSVC.exe
copyright for information about MSVC.exe