How to remove csrss.exe
csrss.exe
The module csrss.exe has been detected as Trojan.Kryptik

File Details
Product Name: | SteamTrain |
Company Name: | Sotona |
MD5: | 442b6fb3dadb7c22e8844e9e5c83ba51 |
Size: | 4 MB |
First Published: | 2023-04-08 23:29:39 (2 years ago) |
Latest Published: | 2023-04-18 23:45:38 (2 years ago) |
Status: | Trojan.Kryptik (on last analysis) | |
Analysis Date: | 2023-04-18 23:45:38 (2 years ago) |
Overview
Signed By: | 10700 |
Status: | Valid |
Common Places:
%windir% |
%localappdata%\microsoft\windows\inetcache\ie |
%localappdata%\microsoft\windows\inetcache\ie |
%localappdata%\microsoft\windows\inetcache\ie |
%windir% |
%profile%\pictures |
%profile%\pictures |
%localappdata%\microsoft\windows\inetcache\ie |
Geography:
62.5% | ||
25.0% | ||
12.5% |
OS Version:
Windows 10 | 87.5% | |
Windows 8.1 | 12.5% |
Analysis
Subsystem: | Windows GUI |
PE Type: | pe |
OS Bitness: | 32 |
Image Base: | 0x00400000 |
Entry Address: | 0x00003de4 |
PE Sections:
Name | Size of data | MD5 |
.text | 87552 | 9fb0fb91258b75fa4ff098353f0a8845 |
.data | 4115456 | de4cc5d13d8f7fd2c60b60f77c87d92c |
.rsrc | 71168 | 1a0dbe7cd126721139dcc5e0b8625385 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for csrss.exe
