How to remove NVIDIA_Cure.exe

» File
File Details
Overview
Analysis

NVIDIA_Cure.exe

The module NVIDIA_Cure.exe has been detected as Trojan.CoinMiner

NVIDIA_Cure.exe

Remove NVIDIA_Cure.exe

File Details

Main Info:

Product Name:	NVIDIA Cure
Company Name:	www.nvidia.com
MD5:	f5a7ab8e1e821ef4d3b1e64f66dc46a2
Size:	7 MB
First Published:	2018-07-20 18:07:29 (6 years ago)
Latest Published:	2018-07-25 14:09:09 (6 years ago)

Analysis:

Status:	Trojan.CoinMiner (on last analysis)
Analysis Date:	2018-07-25 14:09:09 (6 years ago)

Common Places:

%temp%\{5d829908-5ec9-11e8-ae9e-806e6f6e6963}

%commonappdata%

%localappdata%\microsoft\windows\temporary internet files\content.ie5

%temp%\{846ee340-7039-11de-9d20-806e6f6e6963}

%localappdata%\microsoft\windows\inetcache\ie

%temp%\{f7f52b8a-572c-11e8-ab0a-806e6f6e6963}

File Names:

nvhwnd.exe

NVIDIA_Cure.exe

nvidia.vmp[1].exe

nvidia.vmp[2].exe

Geography:

	95.7%
	4.3%

OS Version:

Windows 7	97.1%
Windows 10	2.5%
Windows 8.1	0.4%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	64
Image Base:	0x0000000140000000
Entry Address:	0x00c4cbc4

PE Sections:

Name	Size of data	MD5
.text	0	00000000000000000000000000000000
.rdata	0	00000000000000000000000000000000
.data	0	00000000000000000000000000000000
.pdata	0	00000000000000000000000000000000
.nv_fatb	0	00000000000000000000000000000000
.nvFatBi	0	00000000000000000000000000000000
.gfids	0	00000000000000000000000000000000
.tls	512	1f354d76203061bfdd5a53dae48d5435
.vmp0	0	00000000000000000000000000000000
.vmp1	7388672	2434f090f81a846145ac7cd7a92d3e09
.reloc	512	a856467a68801ac281afd0aa760a97f9
.rsrc	543744	88528d3f000f0c538dc5d46003383006

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for NVIDIA_Cure.exe

copyright for information about NVIDIA_Cure.exe