How to remove UpdateAction_100_WINTTF.exe
- File Details
- Overview
- Analysis
UpdateAction_100_WINTTF.exe
The module UpdateAction_100_WINTTF.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
7907372bf23d383cd11ccd79fa5661bc |
| Size: |
12 MB |
| First Published: |
2020-03-31 08:43:23 (4 years ago) |
| Latest Published: |
2021-02-07 04:28:07 (3 years ago) |
| Status: |
Trojan.CoinMiner (on last analysis) |
|
| Analysis Date: |
2021-02-07 04:28:07 (3 years ago) |
Overview
| %windir%\fonts |
| %windir%\fonts |
| %windir%\fonts |
| %windir%\fonts |
| %windir%\fonts |
| %windir%\fonts |
| %windir%\fonts |
| %windir%\fonts |
| %windir%\fonts |
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000113bc |
| Name |
Size of data |
MD5 |
| .text |
61952 |
3a126e478661f20816f9d9285615f98e |
| .itext |
3072 |
ba48b9b17b3dd8b92da3bd93f20ddb34 |
| .data |
3584 |
d7fd5f4b562d7961758f3d6a8c834fd0 |
| .bss |
0 |
00000000000000000000000000000000 |
| .idata |
3584 |
93d91a2b90e60bd758fc0c4908856ae1 |
| .tls |
0 |
00000000000000000000000000000000 |
| .rdata |
512 |
3dffc444ccc131c9dcee18db49ee6403 |
| .rsrc |
82432 |
0c7b84da45153faa88c0886b2d2049a3 |
