How to remove btfs.exe
btfs.exe
The module btfs.exe has been detected as Trojan.CoinMiner
File Details
| MD5: | 4a4c20378a5ee26188d437ea4d085242 |
| Size: | 82 MB |
| First Published: | 2023-01-14 23:56:16 (a year ago) |
| Latest Published: | 2023-11-12 23:01:17 (5 months ago) |
| Status: | Trojan.CoinMiner (on last analysis) | |
| Analysis Date: | 2023-11-12 23:01:17 (5 months ago) |
Overview
| Signed By: | Bittorrent, Inc. |
| Status: | Valid |
Common Places:
| %appdata%\bittorrent |
| %appdata%\bittorrent |
| %appdata%\bittorrent |
| %appdata%\bittorrent |
| %appdata%\bittorrent |
Geography:
| 40.0% | ||
| 40.0% | ||
| 20.0% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000000400000 |
| Entry Address: | 0x000741c0 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 25321472 | 60be62a8d291d4ce237b0df1e763944e |
| .rdata | 36108800 | 8e1a07cdf391c0c397a5585dee6099ef |
| .data | 3545088 | 42ae05b58ca4598b3dc02d456476ab69 |
| /4 | 512 | 28a3e9c96b9bb43e6541a26c8f68899b |
| /19 | 3083776 | ccbbb931cfc54c21b0f3097ee1377dd1 |
| /32 | 803328 | ba123bdd0263350b86e1cff2862e9dc9 |
| /46 | 103424 | d7f6756f7cef01f3d3f3db03d13edac0 |
| /63 | 367616 | f89c2fa0969a250b36913d8700860d02 |
| /80 | 512 | 56d08c10aa9e5c0c3680f67f8992b3d4 |
| /99 | 5032960 | 5dbee0702b46522856aa517cc0856ba5 |
| /112 | 3166720 | d4b100e7f20aed1a606d59e483e85e98 |
| /124 | 930304 | 201ea007dffe9cb4e74364618990b009 |
| .idata | 1536 | b2b1aa64c761d7a019037c3708ceb465 |
| .reloc | 1281024 | 481e0d7d60793facaee2df56f648316c |
| .symtab | 6390272 | 90858b827b01179ba681a8eab9810c99 |
| .rsrc | 94208 | a65ad6686be57bc1660946bbf5b447c0 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for btfs.exe
