How to remove csrss.exe
csrss.exe
The module csrss.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: | Microsoft® Windows® Operating SystemDProductVersion6.1.7600.16385D |
| Company Name: | Microsoft Corporationd<FileDescriptionC |
| MD5: | 91b5fcf2d944433ec458e01dc916fa67 |
| Size: | 4 MB |
| First Published: | 2021-06-20 20:25:41 (4 years ago) |
| Latest Published: | 2021-06-20 20:25:41 (4 years ago) |
| Status: | Trojan.CoinMiner (on last analysis) | |
| Analysis Date: | 2021-06-20 20:25:41 (4 years ago) |
Geography:
| 100.0% |
OS Version:
| Windows 7 | 100.0% |
Analysis
| Subsystem: | Windows CUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x002ca898 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 3144192 | b81641b161cd1bddd30d2a6e648597ab |
| .rdata | 1185792 | f9bc2f722b2b886fa790c59b388a10e9 |
| .data | 66048 | b9e8731433e84d477d7cf9bd1436b367 |
| .pdata | 123392 | 515bf47aa852b7d684c0dc14b21f0e4d |
| _RANDOMX | 3072 | 40025f998909f97334f029ecd436524f |
| _SHA3_25 | 2560 | c14f9aad5e95192cd7523ba6675549fd |
| _TEXT_CN | 6656 | 6a7f77e47f77f65bef85036ae5a71106 |
| _TEXT_CN | 4608 | 409bf3f918f2402291cb56c2e9354b47 |
| _RDATA | 512 | e8efe174995d0a7abb75c21c39b86a91 |
| .rsrc | 1536 | 1712760a1a7eb65fec8199c7aff0a761 |
| .reloc | 32768 | 32063f2896a4f82f452a9be564d90199 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for csrss.exe
