How to remove curl.exe
curl.exe
The module curl.exe has been detected as Trojan.CoinMiner
File Details
Product Name: | The curl executable |
Company Name: | curl, https://curl.haxx.se/ |
MD5: | 35a69925365756196d55eb24ba0d6f4f |
Size: | 556 KB |
First Published: | 2018-01-11 19:04:06 (6 years ago) |
Latest Published: | 2018-07-05 11:12:07 (6 years ago) |
Status: | Trojan.CoinMiner (on last analysis) | |
Analysis Date: | 2018-07-05 11:12:07 (6 years ago) |
Overview
Signed By: | Jetstar Media LTD |
Status: | Valid |
Common Places:
%appdata%\devnull\netadapterupdate 2.3.5\install |
%programfiles%\devnull |
%sysdrive%\adwcleaner\quarantine\files\ymkzsqtujggpvoxbibfhhkorpnayxicx |
%sysdrive%\adwcleaner\quarantine\files\utnjbjljnwsicpzlqzwsjsxojqpmsbwz |
Geography:
25.0% | ||
25.0% | ||
25.0% | ||
25.0% |
OS Version:
Windows 10 | 50.0% | |
Windows 7 | 25.0% | |
Windows 8.1 | 25.0% |
Analysis
Subsystem: | Windows CUI |
PE Type: | pe |
OS Bitness: | 32 |
Image Base: | 0x00400000 |
Entry Address: | 0x000014e0 |
PE Sections:
Name | Size of data | MD5 |
.text | 384000 | 76c806139939d29f566902f34d17d258 |
.data | 512 | 5557e2905d293ed047634f6775b0b810 |
.rdata | 151040 | 6c3abb7969a01331e0d2bd25a4b70110 |
.bss | 0 | 00000000000000000000000000000000 |
.edata | 2048 | 4fa0eb4fc335867e1c6ec0046d259b98 |
.idata | 5632 | 821a96b5a120cc528fa2b89e1e05baae |
.CRT | 512 | dc8e956f2674dcde42b6bea08e430e36 |
.tls | 512 | 86a276b20a75d749ec57add331657206 |
.rsrc | 1024 | ed1ef4e9a3cb7c4fc36f4db8bfb0ee29 |
.reloc | 16384 | ca4fe0f6b1bff7ebcdb7092000b46021 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for curl.exe