How to remove System.exe
System.exe
The module System.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: | T-Rex NVIDIA GPU miner |
| Company Name: | https://trex-miner.com |
| MD5: | 5a45f422d5d6d95d6d85c2feb5b086b1 |
| Size: | 30 MB |
| First Published: | 2021-11-18 21:15:37 (3 years ago) |
| Latest Published: | 2022-02-13 23:21:06 (3 years ago) |
| Status: | Trojan.CoinMiner (on last analysis) | |
| Analysis Date: | 2022-02-13 23:21:06 (3 years ago) |
Common Places:
| %desktop% |
| %desktop% |
| %appdata% |
| %appdata% |
| %appdata% |
| %appdata% |
| %appdata% |
| %appdata% |
| %appdata% |
| %appdata% |
Geography:
| 100.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x01cd068c |
PE Sections:
| Name | Size of data | MD5 |
| .text | 4674048 | ee591912ab270c8db2d807a4756b28cb |
| .rdata | 16506880 | efaf213166e0d3f7379f3e859fb8e0e9 |
| .data | 296448 | fe0fbf521b578d5ef18a43970416ef3c |
| .pdata | 169472 | 3a1f71b81b03271c4bb7eedc47834679 |
| _RDATA | 512 | 9dc40e95e7a10c8e30eb32595273af09 |
| .Wye0 | 6808064 | 797feaa5380f45c2525403da5bd2572d |
| .Wye1 | 3249152 | a1ad18880f76aa54343a857a774dbe82 |
| .reloc | 39424 | f873b724d0204a9c5bd3328bafc2b3aa |
| .rsrc | 69120 | 3ce8da78f6698f244124d5bb09d19227 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for System.exe
