How to remove dfrgu.exe
dfrgu.exe
The module dfrgu.exe has been detected as Trojan.CoinMiner
File Details
| Product Name: | Microsoft® Windows® Operating System |
| Company Name: | Microsoft Corporation |
| MD5: | 60a10c66df519e957d2ec09ce51b281e |
| Size: | 225 KB |
| First Published: | 2018-06-20 09:07:04 (5 years ago) |
| Latest Published: | 2018-09-19 17:12:36 (5 years ago) |
| Status: | Trojan.CoinMiner (on last analysis) | |
| Analysis Date: | 2018-09-19 17:12:36 (5 years ago) |
Common Places:
| %commonappdata% |
Geography:
| 27.3% | ||
| 27.3% | ||
| 18.2% | ||
| 18.2% | ||
| 9.1% |
OS Version:
| Windows 7 | 45.5% | |
| Windows 10 | 27.3% | |
| Windows 8.1 | 18.2% | |
| Windows 8 | 9.1% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 64 |
| Image Base: | 0x0000000140000000 |
| Entry Address: | 0x00001000 |
PE Sections:
| Name | Size of data | MD5 |
| .code | 17920 | aaf0304bd99b4dc163a1f875a5beacee |
| .text | 63488 | f048e45de24032fb33615b1bbaa724c9 |
| .pdata | 4608 | 4b05036c623bf79c76477e4f7051133f |
| .rdata | 8704 | b91c06f9cefbca1d61b20f9829943238 |
| .data | 7168 | 64182b1c3ec108d920a37ee32bbc1da8 |
| .rsrc | 128000 | 2ad3988af412d1fd2cbfed66ae0103a6 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for dfrgu.exe
