How to remove curl2.exe

curl2.exe

The module curl2.exe has been detected as Trojan.LoadMoney

curl2.exe
Remove curl2.exe

File Details

Product Name:

The curl executable
Company Name:

curl, https://curl.haxx.se/
MD5: 31dd7a70edcf0469305c54252c7c4e7b
Size: 583 KB
First Published: 2018-07-06 08:03:35 (6 years ago)
Latest Published: 2020-05-13 11:46:09 (4 years ago)
Status: Trojan.LoadMoney (on last analysis)
Analysis Date: 2020-05-13 11:46:09 (4 years ago)

Common Places:

%appdata%
%appdata%
%appdata%
%appdata%
%appdata%
%appdata%
%appdata%
%appdata%
%appdata%
%appdata%

File Names:

curl.exe
curl2.exe

Geography:

13.1%
7.2%
6.3%
5.4%
5.0%
5.0%
4.5%
4.1%
4.1%
3.2%
2.7%
2.3%
2.3%
1.8%
1.8%
1.4%
1.4%
1.4%
1.4%
1.4%
1.4%
1.4%
1.4%
1.4%
1.4%
0.9%
0.9%
0.9%
0.9%
0.9%
0.9%
0.9%
0.9%
0.9%
0.9%
0.9%
0.9%
0.9%
0.9%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%

OS Version:

Windows 10 81.5%
Windows 7 15.9%
Windows 8.1 1.8%
Windows 8 0.9%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00001500

PE Sections:

Name Size of data MD5
.text 411136 b7db799dd2c38e65f514a542b7a2ee27
.data 512 06d3f9e30dd8081822cf64e72eb0aaec
.rdata 157696 5202a79eec21fb7015bab7ea20825820
.bss 0 00000000000000000000000000000000
.edata 2048 65f2ee0566c8d5233ca0587378b53519
.idata 5120 fa8351276677ca055427099114288b78
.CRT 512 dc446ab32837b299807f85c460b8e03c
.tls 512 5f0f3f661bcd589a6fd4db0e45999d40
.rsrc 1024 888f6dafed40f011a7d96ed3c85cb18d
.reloc 17408 a6a0dfd1077aee78b5384174a9baccb6

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for curl2.exe
copyright for information about curl2.exe