How to remove WinRAR.exe
WinRAR.exe
The module WinRAR.exe has been detected as Trojan.CoinMiner
File Details
| MD5: | fe248bb00fe1325f64b48e14b3798199 |
| Size: | 7 MB |
| First Published: | 2019-10-21 22:10:12 (5 years ago) |
| Latest Published: | 2019-10-21 22:10:12 (5 years ago) |
| Status: | Trojan.CoinMiner (on last analysis) | |
| Analysis Date: | 2019-10-21 22:10:12 (5 years ago) |
Overview
| Signed By: | BALTAGY |
| Status: | Valid |
Common Places:
| %sysdrive%\programok |
Geography:
| 100.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x00002cb4 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 20992 | 97d04afa98f3958744073fa3755ac90e |
| .data | 0 | 00000000000000000000000000000000 |
| .pdata | 512 | b9dbe5eb7530a74cfda3ad8766457ef5 |
| .xcpad | 0 | 00000000000000000000000000000000 |
| .idata | 1536 | 99868a59d8486228640193f790bab4f7 |
| .reloc | 512 | e9b5a365d6580af2807cc9f60e49f7ac |
| .rsrc | 289792 | d77c9d1e59ea8c52822879023b382336 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for WinRAR.exe
